We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Describe the bug Sometimes, the reported start end end line are different even though the end line has nothing to do with the finding
To Reproduce
.env.prod
DB_HOST=example.com DB_PORT=443 DB_USERNAME=postgres DB_PASSWORD=8ae31cacf141669ddfb5da DB_NAME=best_db DB_SSL=true
gitleaks detect --no-git --report-path o
o
[ { "Description": "Detected a Generic API Key, potentially exposing access to various services and sensitive operations.", "StartLine": 4, "EndLine": 5, "StartColumn": 5, "EndColumn": 1, "Match": "PASSWORD=8ae31cacf141669ddfb5da", "Secret": "8ae31cacf141669ddfb5da", "File": ".env.prod", "SymlinkFile": "", "Commit": "", "Entropy": 3.5383105, "Author": "", "Email": "", "Date": "", "Message": "", "Tags": [], "RuleID": "generic-api-key", "Fingerprint": ".env.prod:generic-api-key:4" } ]
Expected behavior The start line is correct. However, the start column already is wrong because start column 5 means that the finding is
SSWORD=8ae31cacf141669ddfb5da DB
if columns are 0-indexed and
ASSWORD=8ae31cacf141669ddfb5da D
if columns are 1-indexed.
However, what really seems very wrong is the jump into line 5 because DB_NAME has nothing to do with the password.
DB_NAME
Screenshots If applicable, add screenshots to help explain your problem.
Basic Info (please complete the following information):
cc @zricethezav
The text was updated successfully, but these errors were encountered:
No branches or pull requests
Describe the bug
Sometimes, the reported start end end line are different even though the end line has nothing to do with the finding
To Reproduce
.env.prod
) with the following content:gitleaks detect --no-git --report-path o
o
, you will find the following report:Expected behavior
The start line is correct. However, the start column already is wrong because start column 5 means that the finding is
if columns are 0-indexed and
if columns are 1-indexed.
However, what really seems very wrong is the jump into line 5 because
DB_NAME
has nothing to do with the password.Screenshots
If applicable, add screenshots to help explain your problem.
Basic Info (please complete the following information):
cc @zricethezav
The text was updated successfully, but these errors were encountered: