Skip to content

Commit

Permalink
Improve path-based ignore rules (#209)
Browse files Browse the repository at this point in the history
* Update path-based ignore defaults to reduce FPs
* Apply path-based ignore rules to Git history

Fixes #17.

* `summarize`: group by name only to avoid duplicate-named rows
* Update dependencies with `cargo update`
* Update gix, rusqlite, and serde-sarif deps

Co-authored-by: Zach Grace <zach.grace@praetorian.com>
bradlarsen and ztgrace authored Jul 30, 2024
1 parent 4dd0596 commit 097fe8a
Showing 9 changed files with 471 additions and 352 deletions.
7 changes: 7 additions & 0 deletions CHANGELOG.md
Original file line number Diff line number Diff line change
@@ -56,6 +56,13 @@ The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),

Note that although several rules share the same name now, they all still have distinct IDs.

- The default set of patterns for the existing gitignore-style path-based exclusion mechanism (`scan --ignore=GITIGNORE_FILE`) has been expanded ([#209](https://github.com/praetorian-inc/noseyparker/pull/209)).
The new patterns cover test files from things like vendored Python, Node.js, and Go packages.

- The gitignore-style path-based exclusion patterns (`scan --ignore=GITIGNORE_FILE`) now also apply to content found within Git history, and not just paths on the filesystem ([#209](https://github.com/praetorian-inc/noseyparker/pull/209)).
When a blob is found in Git history with at least 1 associated pathname, if all of the associated pathnames match the ignore rules, the blob is not scanned.


## [v0.18.1](https://github.com/praetorian-inc/noseyparker/releases/v0.18.1) (2024-07-12)

### Fixes
Loading

0 comments on commit 097fe8a

Please sign in to comment.