gitea-mirror/sif
1
0
Fork 0
mirror of https://github.com/lunchcat/sif.git synced 2026-03-12 21:23:04 -07:00
Code Issues Packages Projects Releases Wiki Activity
291 Commits 13 Branches 61 Tags
0c9af6a23c5bf61f49be6551736d512cb8559adb
Commit Graph

29 Commits

Author SHA1 Message Date
vmfunc
dc1d33011d deps: bump go-git to v5.16.5 - fixes CVE-2026-25934 
Signed-off-by: vmfunc <celeste@linux.com>
 2026-02-13 01:39:00 +01:00
vmfunc
7cc21d029b internal/scan: migrate nuclei integration to v3 SDK 
replace ~100 lines of manual nuclei v2 plumbing (catalog, loader, core,
protocolstate, protocolinit, hosterrorscache, interactsh, reporting,
ratelimit, testutils) with the v3 lib SDK - NewNucleiEngineCtx +
functional options.

drops direct ratelimit dep, mholt/archiver and nwaples/rardecode
(resolves dependabot CVE alerts for path traversal + DoS).

Signed-off-by: vmfunc <celeste@linux.com>
 2026-02-13 01:22:25 +01:00
vmfunc
662994caf1 deps: bump projectdiscovery/utils to v0.9.0 
Signed-off-by: vmfunc <celeste@linux.com>
 2026-02-13 01:03:47 +01:00
vmfunc
d5d3178783 deps: bump goflags to v0.1.74 
Signed-off-by: vmfunc <celeste@linux.com>
 2026-02-13 01:03:46 +01:00
vmfunc
5ffea24182 ci: upgrade to go 1.24 in all workflows 2026-01-03 06:04:33 -08:00
vmfunc
7beb68e145 feat(output): add styled console output with module loggers 
- Add output package with colored prefixes and module loggers
- Each module gets unique background color based on name hash
- Add spinner for indeterminate operations
- Add progress bar for known-count operations
- Update all scan files to use ModuleLogger pattern
- Add clean PrintSummary for scan completion
 2026-01-03 05:57:10 -08:00
vmfunc
2d38d3fea5 fix: update dependencies to address security vulnerabilities 
- golang.org/x/crypto v0.26.0 -> v0.46.0 (critical: ssh auth bypass)
- golang.org/x/net v0.28.0 -> v0.48.0 (medium: xss vulnerability)
- golang.org/x/oauth2 v0.11.0 -> v0.34.0 (high: input validation)
- quic-go v0.48.2 -> v0.58.0 (high: panic on undecryptable packets)
- golang-jwt/jwt v4.5.1 -> v4.5.2 (high: memory allocation)
- cloudflare/circl v1.3.7 -> v1.6.2 (low: validation issues)
- refraction-networking/utls v1.5.4 -> v1.8.1 (medium: tls downgrade)
- ulikunitz/xz v0.5.11 -> v0.5.15 (medium: memory leak)
- klauspost/compress v1.16.7 -> v1.17.4

also fixes go vet warnings for non-constant format strings
 2026-01-02 18:03:27 -08:00
vmfunc
21c85974cd chore: upgrade to go 1.25 and ignore claude files 
- update go.mod to use go 1.23 with toolchain go1.25.5
- add CLAUDE.md and .claude/ to .gitignore
 2026-01-02 17:13:16 -08:00
dependabot[bot]
1d4673c078 build(deps): bump github.com/quic-go/quic-go in the go_modules group 
Bumps the go_modules group with 1 update: [github.com/quic-go/quic-go](https://github.com/quic-go/quic-go).


Updates `github.com/quic-go/quic-go` from 0.42.0 to 0.48.2
- [Release notes](https://github.com/quic-go/quic-go/releases)
- [Changelog](https://github.com/quic-go/quic-go/blob/master/Changelog.md)
- [Commits](https://github.com/quic-go/quic-go/compare/v0.42.0...v0.48.2)

---
updated-dependencies:
- dependency-name: github.com/quic-go/quic-go
  dependency-type: indirect
  dependency-group: go_modules
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-12-02 17:51:08 +00:00
dependabot[bot]
8a0ed28bd5 build(deps): bump github.com/golang-jwt/jwt/v4 in the go_modules group 
Bumps the go_modules group with 1 update: [github.com/golang-jwt/jwt/v4](https://github.com/golang-jwt/jwt).


Updates `github.com/golang-jwt/jwt/v4` from 4.5.0 to 4.5.1
- [Release notes](https://github.com/golang-jwt/jwt/releases)
- [Changelog](https://github.com/golang-jwt/jwt/blob/main/VERSION_HISTORY.md)
- [Commits](https://github.com/golang-jwt/jwt/compare/v4.5.0...v4.5.1)

---
updated-dependencies:
- dependency-name: github.com/golang-jwt/jwt/v4
  dependency-type: indirect
  dependency-group: go_modules
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-11-04 23:33:18 +00:00
dependabot[bot]
7aa52c2d78 build(deps): bump github.com/hashicorp/go-retryablehttp 
Bumps the go_modules group with 1 update: [github.com/hashicorp/go-retryablehttp](https://github.com/hashicorp/go-retryablehttp).


Updates `github.com/hashicorp/go-retryablehttp` from 0.7.2 to 0.7.7
- [Changelog](https://github.com/hashicorp/go-retryablehttp/blob/main/CHANGELOG.md)
- [Commits](https://github.com/hashicorp/go-retryablehttp/compare/v0.7.2...v0.7.7)

---
updated-dependencies:
- dependency-name: github.com/hashicorp/go-retryablehttp
  dependency-type: indirect
  dependency-group: go_modules
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-06-24 22:11:06 +00:00
dependabot[bot]
1c077eeb9f build(deps): bump github.com/projectdiscovery/interactsh 
Bumps the go_modules group with 1 update in the / directory: [github.com/projectdiscovery/interactsh](https://github.com/projectdiscovery/interactsh).


Updates `github.com/projectdiscovery/interactsh` from 1.1.6 to 1.2.0
- [Release notes](https://github.com/projectdiscovery/interactsh/releases)
- [Changelog](https://github.com/projectdiscovery/interactsh/blob/main/.goreleaser.yml)
- [Commits](https://github.com/projectdiscovery/interactsh/compare/v1.1.6...v1.2.0)

---
updated-dependencies:
- dependency-name: github.com/projectdiscovery/interactsh
  dependency-type: indirect
  dependency-group: go_modules
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-06-05 17:07:28 +00:00
dependabot[bot]
ae9750f079 build(deps): bump golang.org/x/net 
Bumps the go_modules group with 1 update in the / directory: [golang.org/x/net](https://github.com/golang/net).


Updates `golang.org/x/net` from 0.20.0 to 0.23.0
- [Commits](https://github.com/golang/net/compare/v0.20.0...v0.23.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-type: indirect
  dependency-group: go_modules
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-04-19 13:02:39 +00:00
vmfunc
f51e710a33 chore: remove toolchain requirement 2024-04-15 02:45:39 +02:00
vmfunc
855363e078 chore: update go modfile 2024-04-15 02:42:54 +02:00
dependabot[bot]
c76a6c3555 build(deps): bump the go_modules group across 1 directory with 3 updates 
Bumps the go_modules group with 3 updates in the / directory: [github.com/cloudflare/circl](https://github.com/cloudflare/circl), [github.com/quic-go/quic-go](https://github.com/quic-go/quic-go) and google.golang.org/protobuf.


Updates `github.com/cloudflare/circl` from 1.3.3 to 1.3.7
- [Release notes](https://github.com/cloudflare/circl/releases)
- [Commits](https://github.com/cloudflare/circl/compare/v1.3.3...v1.3.7)

Updates `github.com/quic-go/quic-go` from 0.37.4 to 0.42.0
- [Release notes](https://github.com/quic-go/quic-go/releases)
- [Changelog](https://github.com/quic-go/quic-go/blob/master/Changelog.md)
- [Commits](https://github.com/quic-go/quic-go/compare/v0.37.4...v0.42.0)

Updates `google.golang.org/protobuf` from 1.31.0 to 1.33.0

---
updated-dependencies:
- dependency-name: github.com/cloudflare/circl
  dependency-type: indirect
  dependency-group: go_modules-security-group
- dependency-name: github.com/quic-go/quic-go
  dependency-type: indirect
  dependency-group: go_modules-security-group
- dependency-name: google.golang.org/protobuf
  dependency-type: indirect
  dependency-group: go_modules-security-group
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-04-02 14:19:23 +00:00
syscats
ad18133b88 chore: update dependencies 2024-02-04 15:09:18 +01:00
Sol Fisher Romanoff
b2a354137d Move import repositories to dropalldatabases 2023-09-14 20:48:45 +03:00
Sol Fisher Romanoff
7aa66ee6b7 Use nuclei API to scan nuclei templates 2023-09-14 20:48:28 +03:00
Sol Fisher Romanoff
755b4641c7 Refactor 2023-09-14 20:46:47 +03:00
Sol Fisher Romanoff
4f117c465f config: use goflags instead of pflag 2023-09-14 20:46:47 +03:00
Sol Fisher Romanoff
04a304908a Add nuclei template parsing support 2023-09-14 20:46:47 +03:00
Sol Fisher Romanoff
e839d817ca go mod tidy 2023-09-14 20:46:45 +03:00
pushfs
09f761d908 dork: add dorking feature 2023-09-14 20:46:45 +03:00
pushfs
69db4b26ef progress bar 2023-09-01 19:34:18 +02:00
Sol Fisher Romanoff
fdb46284f6 Add flag parsing for --file and --url 2023-09-01 19:12:25 +03:00
pushfs
d2e214f691 asdd 2023-09-01 17:28:59 +02:00
pushfs
50dd6e38a7 base logging 2023-09-01 17:27:19 +02:00
pushfs
3be10bbae6 go mod 2023-09-01 17:06:17 +02:00