FreshPorts -- security/py-detect-secrets: Tool for detecting secrets in the codebase

Port details

py-detect-secrets Tool for detecting secrets in the codebase

1.4.0_1 security =0 1.4.0Version of this port present on the latest quarterly branch.

Maintainer: sunpoet@FreeBSD.org

Port Added: 2023-04-05 17:37:34

Last Update: 2024-05-13 14:07:35

Commit Hash: 5bae275

Also Listed In: python

License: APACHE20

WWW:

https://github.com/Yelp/detect-secrets

Description:

detect-secrets is an aptly named module for (surprise, surprise) detecting secrets within a code base. However, unlike other similar packages that solely focus on finding secrets, this package is designed with the enterprise client in mind: providing a backwards compatible, systematic means of: 1. Preventing new secrets from entering the code base, 2. Detecting if such preventions are explicitly bypassed, and 3. Providing a checklist of secrets to roll, and migrate off to a more secure storage. This way, you create a separation of concern: accepting that there may currently be secrets hiding in your large repository (this is what we refer to as a baseline), but preventing this issue from getting any larger, without dealing with the potentially gargantuan effort of moving existing secrets away. It does this by running periodic diff outputs against heuristically crafted regex statements, to identify whether any new secret has been committed. This way, it avoids the overhead of digging through all git history, as well as the need to scan the entire repository every time.

¦ ¦ ¦ ¦

Manual pages:

FreshPorts has no man page information for this port.

pkg-plist: as obtained via: make generate-plist

There is no configure plist information for this port.

Dependency lines:

${PYTHON_PKGNAMEPREFIX}detect-secrets>0:security/py-detect-secrets@${PY_FLAVOR}

To install the port:

cd /usr/ports/security/py-detect-secrets/ && make install clean

To add the package, run one of these commands:

pkg install security/py-detect-secrets
pkg install py39-detect-secrets

NOTE: If this package has multiple flavors (see below), then use one of them instead of the name specified above.
NOTE: This is a Python port. Instead of py39-detect-secrets listed in the above command, you can pick from the names under the Packages section.

PKGNAME: py39-detect-secrets

Package flavors (<flavor>: <package>)

py39: py39-detect-secrets

distinfo:

TIMESTAMP = 1679498504 SHA256 (detect_secrets-1.4.0.tar.gz) = d56787e339758cef48c9ccd6692f7a094b9963c979c9813580b0169e41132833 SIZE (detect_secrets-1.4.0.tar.gz) = 94954

Packages (timestamps in pop-ups are UTC):

py39-detect-secrets
ABI	aarch64	amd64	armv6	armv7	i386	powerpc	powerpc64	powerpc64le
FreeBSD:13:latest	1.4.0	1.4.0	-	1.4.0	1.4.0	-	-	-
FreeBSD:13:quarterly	1.4.0	1.4.0	1.4.0	1.4.0	1.4.0	1.4.0	1.4.0	1.4.0
FreeBSD:14:latest	1.4.0	1.4.0	-	1.4.0	1.4.0	1.4.0	-	1.4.0
FreeBSD:14:quarterly	1.4.0	1.4.0	-	1.4.0	1.4.0	1.4.0	1.4.0	1.4.0
FreeBSD:15:latest	1.4.0	1.4.0	n/a	1.4.0	n/a	1.4.0	1.4.0	1.4.0

Dependencies

NOTE: FreshPorts displays only information on required and default dependencies. Optional dependencies are not covered.

Build dependencies:

py39-setuptools>=0 : devel/py-setuptools@py39
py39-wheel>=0 : devel/py-wheel@py39
python3.9 : lang/python39
py39-build>=0 : devel/py-build@py39
py39-installer>=0 : devel/py-installer@py39

Test dependencies:

python3.9 : lang/python39

Runtime dependencies:

py39-yaml>=0 : devel/py-yaml@py39
py39-requests>=0 : www/py-requests@py39
python3.9 : lang/python39

There are no ports dependent upon this port

Configuration Options:

No options to configure

Options name:

security_py-detect-secrets

USES:

python

FreshPorts was unable to extract/find any pkg message

Master Sites:

Expand this list (2 items)

Collapse this list.

Number of commits found: 3

Commit	Credits	Log message
Commit History - (may be incomplete: for full details, see links to repositories near top of page)
1.4.0_1 13 May 2024 14:07:35	Po-Chuan Hsieh (sunpoet)	security/py-detect-secrets: Convert to USE_PYTHON=pep517 - Bump PORTREVISION for package change
1.4.0 27 Jun 2023 19:34:34	Rene Ladan (rene)	all: remove explicit versions in USES=python for "3.x+" The logic in USES=python will automatically convert this to 3.8+ by itself. Adjust two ports that only had Python 3.7 mentioned but build fine on Python 3.8 too. finance/quickfix: mark BROKEN with PYTHON libtool: compile: c++ -DHAVE_CONFIG_H -I. -I../.. -I -I. -I.. -I../.. -I../C++ -DLIBICONV_PLUG -DPYTHON_MAJOR_VERSION=3 -Wno-unused-variable -Wno-maybe-uninitialized -O2 -pipe -DLIBICONV_PLUG -fstack-protector-strong -fno-strict-aliasing -DLIBICONV_PLUG -Wall -ansi -Wno-unused-command-line-argument -Wpointer-arith -Wwrite-strings -Wno-overloaded-virtual -Wno-deprecated-declarations -Wno-deprecated -std=c++0x -MT _quickfix_la-QuickfixPython.lo -MD -MP -MF .deps/_quickfix_la-QuickfixPython.Tpo -c QuickfixPython.cpp -fPIC -DPIC -o .libs/_quickfix_la-QuickfixPython.o warning: unknown warning option '-Wno-maybe-uninitialized'; did you mean '-Wno-uninitialized'? [-Wunknown-warning-option] QuickfixPython.cpp:175:11: fatal error: 'Python.h' file not found ^~~~~~~~~~ 1 warning and 1 error generated. Reviewed by: portmgr, vishwin, yuri Differential Revision: <https://reviews.freebsd.org/D40568>
1.4.0 05 Apr 2023 17:29:40	Po-Chuan Hsieh (sunpoet)	security/py-detect-secrets: Add py-detect-secrets 1.4.0 detect-secrets is an aptly named module for (surprise, surprise) detecting secrets within a code base. However, unlike other similar packages that solely focus on finding secrets, this package is designed with the enterprise client in mind: providing a backwards compatible, systematic means of: 1. Preventing new secrets from entering the code base, 2. Detecting if such preventions are explicitly bypassed, and 3. Providing a checklist of secrets to roll, and migrate off to a more secure storage. This way, you create a separation of concern: accepting that there may currently be secrets hiding in your large repository (this is what we refer to as a baseline), but preventing this issue from getting any larger, without dealing with the potentially gargantuan effort of moving existing secrets away. It does this by running periodic diff outputs against heuristically crafted regex statements, to identify whether any new secret has been committed. This way, it avoids the overhead of digging through all git history, as well as the need to scan the entire repository every time.

Number of commits found: 3

Login
User Login Create account

Servers and bandwidth provided by
New York Internet, iXsystems, and RootBSD

This site
What is FreshPorts? About the authors Issues FAQ How big is it? Security Policy Privacy Blog Contact

Search
Enter Keywords: more...

Latest Vulnerabilities

qt6-base	May 15
qt6-webengine	May 15
chromium	May 14
cpu-microcode-intel	May 14
ungoogled-chromium	May 14
dnsdist	May 13
go121	May 13
go122	May 13
chromium	May 12
ungoogled-chromium	May 12
electron29	May 09
gitlab	May 09
tailscale	May 09
electron29	May 08
chromium	May 02

15 vulnerabilities affecting 117 ports have been reported in the past 14 days

^* - modified, not new

All vulnerabilities

Last processed:
2024-05-15 17:58:29 UTC

Ports
Home Categories Deleted ports Sanity Test Failures Newsfeeds

Statistics

Graphs
NEW Graphs (Javascript)

Calculated hourly:

Port count	32351
Broken	80
Deprecated	184
Ignore	211
Forbidden	2
Restricted	2
No CDROM	1
Vulnerable	37
Expired	10
Set to expire	155
Interactive	0
new 24 hours	35
new 48 hours	35
new 7 days	153
new fortnight	166
new month	201

Get notified when packages are built