v0.65.1

What's Changed

• Add shared GitLab user enumeration for gl users enum and gluna users enum by @Copilot in #629
• build(deps): bump zizmorcore/zizmor-action from 0.5.3 to 0.5.5 by @dependabot[bot] in #641
• build(deps): bump zizmorcore/zizmor-action from 0.5.5 to 0.5.6 by @dependabot[bot] in #643
• build(deps): bump goreleaser/goreleaser-action from 7.2.1 to 7.2.2 by @dependabot[bot] in #642
• refactor(config): migrate commands to NewCommandSetup and remove lega… by @frjcomp in #640
• Extend Copilot instructions and reusable skills by @frjcomp in #644
• build(deps): bump golang.org/x/net from 0.54.0 to 0.55.0 by @dependabot[bot] in #645
• build(deps): bump securego/gosec from 2.26.1 to 2.27.1 by @dependabot[bot] in #648
• build(deps): bump github.com/trufflesecurity/trufflehog/v3 from 3.95.3 to 3.95.5 by @dependabot[bot] in #649

Full Changelog: v0.65.0...v0.65.1

v0.65.0

What's Changed

• build(deps): bump github.com/CircleCI-Public/circleci-cli from 0.1.35800 to 0.1.36202 by @dependabot[bot] in #625
• build(deps): bump github.com/go-git/go-git/v5 from 5.18.0 to 5.19.0 in the go_modules group across 1 directory by @dependabot[bot] in #626
• build(deps): bump code.gitea.io/sdk/gitea from 0.24.1 to 0.25.0 by @dependabot[bot] in #627
• build(deps): bump atomicgo.dev/keyboard from 0.2.9 to 0.2.10 by @dependabot[bot] in #630
• build(deps): bump golang.org/x/term from 0.42.0 to 0.43.0 by @dependabot[bot] in #631
• build(deps): bump github.com/tidwall/gjson from 1.18.0 to 1.19.0 by @dependabot[bot] in #632
• build(deps): bump golang.org/x/text from 0.36.0 to 0.37.0 by @dependabot[bot] in #633
• build(deps): bump golang.org/x/net from 0.53.0 to 0.54.0 by @dependabot[bot] in #634
• build(deps): bump github.com/trufflesecurity/trufflehog/v3 from 3.95.2 to 3.95.3 by @dependabot[bot] in #635
• build(deps): bump github.com/go-git/go-git/v5 from 5.19.0 to 5.19.1 in the go_modules group across 1 directory by @dependabot[bot] in #636
• build(deps): bump code.gitea.io/sdk/gitea from 0.25.0 to 0.25.1 by @dependabot[bot] in #637
• Improve CLI flags parsing by @frjcomp in #624

Full Changelog: v0.64.0...v0.65.0

v0.64.0

What's Changed

• feat(gitlab): verify self-hosted tokens in scanner by @frjcomp in #622

Full Changelog: v0.63.0...v0.64.0

v0.63.0

What's Changed

• Docs gl harvest by @frjcomp in #611
• build(deps): bump securego/gosec from 2.25.0 to 2.26.1 by @dependabot[bot] in #614
• build(deps): bump goreleaser/goreleaser-action from 7.1.0 to 7.2.1 by @dependabot[bot] in #613
• build(deps): bump github.com/CircleCI-Public/circleci-cli from 0.1.35213 to 0.1.35800 by @dependabot[bot] in #615
• Elk by @frjcomp in #612
• Add unauthenticated GitLab public scan by @frjcomp in #619

Full Changelog: v0.62.1...v0.63.0

v0.62.1

Changelog

• 5ed69bf ci: fix binary path in container prepare step (#609)
• 08ff8f5 ci: build and publish container image in release workflow (#608)
• 02cb7bf ci: build and publish container image in release workflow (#607)

v0.62.0

Changelog

• fbf5700 Feature/gitlab snippets scan (#606)
• 58d204e Add minimal container image published to ghcr.io on release (#605)
• cbb2efc Merge pull request #603 from CompassSecurity/dependabot/go_modules/github.com/trufflesecurity/trufflehog/v3-3.95.2
• 16177a3 build(deps): bump github.com/trufflesecurity/trufflehog/v3
• d276c9e Merge pull request #600 from CompassSecurity/dependabot/github_actions/goreleaser/goreleaser-action-7.1.0
• 82520bf Merge pull request #601 from CompassSecurity/dependabot/go_modules/github.com/rs/zerolog-1.35.1
• 507a025 Merge pull request #602 from CompassSecurity/dependabot/go_modules/github.com/CircleCI-Public/circleci-cli-0.1.35213
• 762e28e build(deps): bump github.com/CircleCI-Public/circleci-cli
• e65be3b build(deps): bump github.com/rs/zerolog from 1.35.0 to 1.35.1
• b6d09cd build(deps): bump goreleaser/goreleaser-action from 7.0.0 to 7.1.0

v0.61.1

What's Changed

• build(deps): bump github.com/trufflesecurity/trufflehog/v3 from 3.94.1 to 3.94.2 by @dependabot[bot] in #587
• build(deps): bump github.com/trufflesecurity/trufflehog/v3 from 3.94.2 to 3.94.3 by @dependabot[bot] in #589
• build(deps): bump actions/upload-pages-artifact from 4.0.0 to 5.0.0 by @dependabot[bot] in #590
• build(deps): bump golang.org/x/term from 0.41.0 to 0.42.0 by @dependabot[bot] in #593
• build(deps): bump golang.org/x/net from 0.52.0 to 0.53.0 by @dependabot[bot] in #591
• build(deps): bump golang.org/x/text from 0.35.0 to 0.36.0 by @dependabot[bot] in #592
• build(deps): bump actions/upload-artifact from 7.0.0 to 7.0.1 by @dependabot[bot] in #594
• build(deps): bump github.com/go-git/go-git/v5 from 5.17.2 to 5.18.0 in the go_modules group across 1 directory by @dependabot[bot] in #595
• build(deps): bump zizmorcore/zizmor-action from 0.5.2 to 0.5.3 by @dependabot[bot] in #596
• build(deps): bump github.com/Azure/go-ntlmssp from 0.1.0 to 0.1.1 in the go_modules group across 1 directory by @dependabot[bot] in #597
• build(deps): bump go.opentelemetry.io/otel from 1.40.0 to 1.41.0 in the go_modules group across 1 directory by @dependabot[bot] in #598
• fix(gitlab): fallback project resolution for job token exploit by @frjcomp in #599

Full Changelog: v0.61.0...v0.61.1

v0.61.0

What's Changed

• build(deps): bump actions/configure-pages from 5.0.0 to 6.0.0 by @dependabot[bot] in #580
• build(deps): bump actions/deploy-pages from 4.0.5 to 5.0.0 by @dependabot[bot] in #581
• build(deps): bump github.com/rs/zerolog from 1.34.0 to 1.35.0 by @dependabot[bot] in #583
• build(deps): bump github.com/rhysd/actionlint from 1.7.11 to 1.7.12 by @dependabot[bot] in #584
• Fix gl enum typo by @frjcomp in #585
• build(deps): bump github.com/go-git/go-git/v5 from 5.17.1 to 5.17.2 by @dependabot[bot] in #586
• feat(circle): add CircleCI scanner by @frjcomp in #582

Full Changelog: v0.60.1...v0.61.0

v0.60.1

What's Changed

• Skip PersistentPreRun during shell completion commands by @Copilot in #579

Full Changelog: v0.60.0...v0.60.1

v0.60.0

What's Changed

• Bump github.com/go-git/go-git/v5 from 5.17.0 to 5.17.1 in the go_modules group across 1 directory by @dependabot[bot] in #573
• Bump actions/setup-go from 6.3.0 to 6.4.0 by @dependabot[bot] in #574
• Bump code.gitea.io/sdk/gitea from 0.23.2 to 0.24.1 by @dependabot[bot] in #576
• Bump github.com/trufflesecurity/trufflehog/v3 from 3.94.0 to 3.94.1 by @dependabot[bot] in #575
• feat(jenkins): add Jenkins platform scanner and CLI by @frjcomp in #577

Full Changelog: v0.59.1...v0.60.0