Skip to content

Feature/security scanner enhancements#1

Merged
StephenJarso merged 24 commits into
mainfrom
feature/security-scanner-enhancements
Jun 13, 2026
Merged

Feature/security scanner enhancements#1
StephenJarso merged 24 commits into
mainfrom
feature/security-scanner-enhancements

Conversation

@StephenJarso

@StephenJarso StephenJarso commented Jun 13, 2026

Copy link
Copy Markdown
Owner

What does this PR do?

Describe the changes in this PR.

Which detectors does it affect?

  • Secrets
  • Environment
  • Auth
  • Config
  • New detector: _______

Testing done

  • Unit tests added
  • Manually tested with a real codebase
  • All existing tests pass

Checklist

  • Code follows the style guide
  • Self-review completed
  • Documentation updated (if applicable)
  • CHANGELOG.md updated under [Unreleased]

Screenshots (if applicable)

Add screenshots to help explain your changes.

@StephenJarso
fix: update go.mod module name and dependencies for compatibility
a66d80f 
- Change module name from github.com/stephenjarso/secure-push to secure-push
- Update golang.org/x/sync to v0.5.0 for Go 1.22 compatibility
@StephenJarso
fix: add placeholder content to pkg/types/finding.go
3b98185 
- Add basic Finding struct for future use
- Prevent compilation errors from empty file
@StephenJarso
fix: add placeholder content to pkg/utils/entropy.go
a900b47 
- Add basic package documentation
- Prevent compilation errors from empty file
@StephenJarso
fix: add placeholder content to pkg/utils/regex.go
5e3b2ee 
- Add basic package documentation
- Prevent compilation errors from empty file
@StephenJarso
fix: improve binary file detection in scanner
ccde4b3 
- Fix IsBinaryFile to handle files smaller than 512 bytes
- Return correct number of bytes read to avoid false positives
- Remove unused min function
@StephenJarso
fix: remove unused severityOrder variable in console reporter
32ae3d2 
- Remove unused map that was causing compilation warning
- Clean up code to pass linter checks
@StephenJarso
feat: update config struct to match documentation
1cc777f 
- Add SeverityThreshold, IgnoreRules, IgnorePaths, Allowlist, CustomRules fields
- Use detectors.Severity type for consistency
- Add matchPath helper function for better path matching
- Handle non-existent config files gracefully
@StephenJarso
test: update config tests for new config struct
65a005b 
- Update test cases to use new field names (SeverityThreshold, IgnorePaths)
- Fix test expectations for severity filtering
- Add detectors import for Severity type
@StephenJarso
fix: make config detector filenames case-insensitive
10b718d 
- Convert configFilenames map keys to lowercase
- Ensure consistent matching with strings.ToLower in Detect function
@StephenJarso
test: fix config detector edge case test expectations
5187a34 
- Update empty filename test to expect 0 findings
- Empty filename should not match any config file pattern
@StephenJarso
test: fix integration test expectations
4986b56 
- Update TestIntegrationScanWithEnvFiles to expect 1 finding
- EnvDetector only detects .env file, not secrets within
- Update TestIntegrationScanWithSeverityFilter to use SeverityThreshold field
@StephenJarso
feat: add pre-commit and install commands to CLI
c4d12d0 
- Add subcommand support: scan, pre-commit, install, version, help
- Add runPreCommit function to scan staged files
- Add runInstall function to install git pre-commit hook
- Add getStagedFiles placeholder for git integration
- Improve usage output with command examples
@StephenJarso
docs: add parallel scanning constants for future use
69fa106 
- Add MaxConcurrentFiles constant for concurrency limit
- Add DefaultWorkerCount for worker pool configuration
- Document parallel scanning utilities
@StephenJarso
test: add unit tests for logger package
5e2d6d6 
- Add tests for all log levels: Debug, Info, Warn, Error
- Add tests for log level filtering
- Add tests for custom output writer support
@StephenJarso
test: add unit tests for reporters package
6226203 
- Add tests for ConsoleReporter, JSONReporter, and GitHubReporter
- Test output format and error handling
@StephenJarso
test: add unit tests for scanner walk utilities
6d98d2b 
- Add tests for WalkDir, GetFileSize, FileExists, IsDir
- Add tests for GetRelativePath and ValidatePath
- Test error handling for edge cases
@StephenJarso
test: add comprehensive tests for file detection utilities
f7d7400 
- Add tests for IsBinaryFile, IsBinary, GetFileExtension, IsTextFile
- Test edge cases: small files, large files, files in subdirectories
- Test error handling for nonexistent files
@StephenJarso
docs: update detectors guide with complete documentation
d21116b 
- Add all built-in detectors to the reference table
- Add detector best practices section
- Improve documentation formatting and examples
@StephenJarso
docs: enhance configuration guide with complete options
13199e3 
- Add max_file_size, enable_detectors, disable_detectors options
- Add common configuration patterns section
- Improve documentation structure and examples
@StephenJarso
feat: add CSV reporter for machine-readable output
8bc40ee 
- Add CSVReporter struct for CSV output format
- Add NewCSVReporter constructor function
- Output findings with Rule, Severity, File, Line, Message columns
@StephenJarso
docs: update reporters guide to include CSV reporter
d867165
@StephenJarso
feat: add CSV output format and implement getStagedFiles for pre-commit
abe9d76
@StephenJarso
fix: fix reporter tests to avoid os.Exit calls
19f63f0
@StephenJarso
test: add CSV reporter test
d3bc431
@StephenJarso StephenJarso merged commit 9bf94b7 into main Jun 13, 2026
2 of 4 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@StephenJarso