gitea-mirror/sif - sif - Gitea: Git with a cup of tea

mirror of https://github.com/lunchcat/sif.git synced 2026-04-28 11:33:06 -07:00

Author	SHA1	Message	Date
vmfunc	c85201b1ed	ci: pin govulncheck to v1.1.4 - fixes scorecard pinned-dependencies Signed-off-by: vmfunc <celeste@linux.com>	2026-02-13 01:57:36 +01:00
vmfunc	45a384bdc9	add SECURITY.md - fixes scorecard security-policy check Signed-off-by: vmfunc <celeste@linux.com>	2026-02-13 01:57:31 +01:00
vmfunc	fcf9291653	ci: add explicit permissions to all workflows - fixes scorecard token-permissions Signed-off-by: vmfunc <celeste@linux.com>	2026-02-13 01:40:22 +01:00
vmfunc	e94fda0acf	deps: bump go-git to v5.16.5 - fixes CVE-2026-25934 Signed-off-by: vmfunc <celeste@linux.com>	2026-02-13 01:39:00 +01:00
vmfunc	03a9488b65	internal/scan: migrate nuclei integration to v3 SDK replace ~100 lines of manual nuclei v2 plumbing (catalog, loader, core, protocolstate, protocolinit, hosterrorscache, interactsh, reporting, ratelimit, testutils) with the v3 lib SDK - NewNucleiEngineCtx + functional options. drops direct ratelimit dep, mholt/archiver and nwaples/rardecode (resolves dependabot CVE alerts for path traversal + DoS). Signed-off-by: vmfunc <celeste@linux.com>	2026-02-13 01:22:25 +01:00
vmfunc	83702e9a41	ci: overhaul workflows - lint, security scanning, release hardening - add golangci-lint job to go.yml (parallel with build+test) - add Go 1.23/1.24 version matrix, coverage only on 1.24 - upgrade setup-go@v4 to v5, codecov@v4 to v5 across all workflows - fix check-large-files bug (find\|while never exits 1), exclude .git/ - add concurrency groups to push+PR workflows (no duplicate runs) - lowercase all workflow names to match project voice - add gosec, errorlint, gocognit, nilnil, wastedassign, usetesting linters - remove deprecated exportloopref (Go 1.22 fixed loop var capture) - new: govulncheck.yml - Go vuln scanner with call-graph analysis - new: scorecard.yml - OpenSSF supply chain scorecard - new: dependabot.yml - auto-update Go deps + Actions versions - release: SHA256 checksums + SBOM generation for all artifacts - add CODEOWNERS	2026-02-13 01:09:57 +01:00
vmfunc	426a301182	deps: bump projectdiscovery/utils to v0.9.0 Signed-off-by: vmfunc <celeste@linux.com>	2026-02-13 01:03:47 +01:00
vmfunc	953ef299c9	deps: bump goflags to v0.1.74 Signed-off-by: vmfunc <celeste@linux.com>	2026-02-13 01:03:46 +01:00
vmfunc	548c2110d4	update funding.yml with proper sponsor info	2026-02-13 00:26:04 +01:00
vmfunc	4f42c52964	add nixpkgs install instructions and badge to readme	2026-02-13 00:12:28 +01:00
vmfunc	5a557eb20a	Merge pull request #62 from 0x4bs3nt/feat/builtin-shodan feat(modules): builtin shodan scan as module	2026-02-08 21:31:07 +01:00
vmfunc	f50f1b933a	Merge branch 'main' into feat/builtin-shodan	2026-02-08 19:22:32 +01:00
vmfunc	6f460425be	Merge pull request #63 from 0x4bs3nt/feat/builtin-whois feat(modules): builtin whois scan as module	2026-02-08 14:12:27 +01:00
vmfunc	261dbea356	Merge pull request #64 from 0x4bs3nt/feat/builtin-frameworks feat(modules): builtin framework detection as module	2026-02-08 14:11:56 +01:00
vmfunc	16ea9047f0	Merge branch 'main' into feat/builtin-frameworks	2026-01-12 11:22:56 +01:00
vmfunc	39bd115d3c	Merge branch 'main' into feat/builtin-shodan	2026-01-12 11:22:36 +01:00
vmfunc	ccf093b7e9	fix: rename to snakecase	2026-01-12 11:19:54 +01:00
vmfunc	b5398ec687	fix: renamed whois module file Renamed whois scan module file to differentiate from legacy whois scan file.	2026-01-12 11:19:54 +01:00
vmfunc	b298e2ec2c	fix(conflicts): fix PR conflicts on	2026-01-12 11:19:48 +01:00
vmfunc	812d0b3e53	Merge pull request #61 from 0x4bs3nt/feat/builtin-nuclei feat(modules): builtin nuclei scan as module	2026-01-11 16:39:18 -08:00
vmfunc	95cebab47f	fix: rename to snakecase	2026-01-07 22:39:56 +01:00
vmfunc	579f5aff4b	fix: rename to snakecase	2026-01-07 22:39:35 +01:00
vmfunc	6df46b635a	fix: rename to snakecase	2026-01-07 22:39:19 +01:00
vmfunc	4a6364aba9	fix: shodan module file rename Renamed shodan module file to differentiate from legacy shodan lookup files.	2026-01-07 22:35:51 +01:00
vmfunc	e7db0777c2	fix: frameworks module file rename Renamed frameworks module file to differentiate from legacy framework scans.	2026-01-07 22:34:53 +01:00
vmfunc	9767a6b189	fix: renamed nuclei module file Renamed the nuclei module file to differentiate from the nuclei legacy scan file.	2026-01-07 22:33:49 +01:00
vmfunc	abb992aefd	fix: colorizer exception Fixed Nuclei giving off exception for missing Colorizer on the executor options.	2026-01-07 19:06:51 +01:00
vmfunc	3c160de165	fix(nuclei): logdir, headless option and hosterrorscache Set the HostErrorsCache executor option, cache is created but not passed as option. Headless initialization is required even without browser templates. Nuclei expects project file to be set	2026-01-07 17:01:22 +01:00
vmfunc	66a752d604	fix: nuclei scan nil pointer dereference Fixed nil pointer dereference issues in the nuclei scan running as a module	2026-01-07 15:09:49 +01:00
vmfunc	45f341c97f	feat(modules): legacy nuclei scan Converted nuclei scan to be able to run as module.	2026-01-07 13:07:35 +01:00
vmfunc	0383c49bbd	feat(modules): legacy shodan scan Converted legacy Go shodan scan to be able to run as module.	2026-01-07 13:05:08 +01:00
vmfunc	e5e831541f	feat(modules): legacy framework scan Converted legacy framework scan to be able to run as module.	2026-01-07 13:02:40 +01:00
vmfunc	f309198f69	feat(modules): infra for builtin modules Infrastructure preparation for builtin complex Go module registration.	2026-01-07 12:56:17 +01:00
vmfunc	689d575282	Merge pull request #56 from 0x4bs3nt/feat/astro-framework-detection feat(frameworks): add Astro framework detection	2026-01-06 12:10:34 -08:00
vmfunc	75014e244b	fix: adjust generator meta weight Adjusted generator meta weight to remain consistent with other meta-framework detectors. Co-authored-by: vmfunc <celeste@router.sex>	2026-01-06 14:45:03 +01:00
vmfunc	9c5220ec57	Merge pull request #55 from 0x4bs3nt/docs/contributing-update docs: update CONTRIBUTING.md	2026-01-05 23:50:02 -08:00
vmfunc	0297bf3975	fix: discord invite Fixed discord invite to official server invite url.	2026-01-06 06:35:32 +01:00
vmfunc	8eb7e84090	fix: use dynamic versioning for debian packages	2026-01-05 20:55:30 -08:00
vmfunc	4e0c45fa58	docs: update CONTRIBUTING.md Update CONTRIBUTING.md docs with up to date data: - Discord invite to new sif server - Update URL-s to new vmfunc/sif repository - Update guidelines on contributing framework detection patterns	2026-01-06 05:30:34 +01:00
vmfunc	6467a2ca58	docs: add apt/cloudsmith installation instructions and badge	2026-01-05 20:28:30 -08:00
vmfunc	844affaed4	ci: push debian packages to cloudsmith	2026-01-05 20:28:07 -08:00
vmfunc	56895899ff	ci: add debian package builds to releases	2026-01-05 20:13:18 -08:00
vmfunc	2e99e5072f	docs: add 0xatrilla to contributors for AUR packaging	2026-01-05 19:51:50 -08:00
vmfunc	37925c6c99	docs: add AUR and Homebrew badges to readme	2026-01-05 19:48:51 -08:00
vmfunc	d3216ca4a6	Merge pull request #53 from 0xatrilla/add-aur-install-instructions docs: add AUR installation instructions	2026-01-05 19:44:43 -08:00
vmfunc	277f516ce9	chore: revise arch linux installation section in README Updated Arch Linux installation instructions in README.md.	2026-01-05 19:44:15 -08:00
vmfunc	ee1f9d7f31	feat(frameworks): add Astro framework detection Add detection support for the Astro meta framework. Includes signature detection, version extraction and tests with full signature coverage.	2026-01-06 04:40:15 +01:00
acxtrilla	9705d95067	docs: add AUR installation instructions Added Arch Linux (AUR) installation section to README with instructions for installing via AUR helpers (yay/paru) or manually with makepkg. Package available at: https://aur.archlinux.org/packages/sif	2026-01-06 01:56:40 +00:00
vmfunc	8c60e255dc	docs: add homebrew installation instructions	2026-01-05 16:53:26 -08:00
vmfunc	7438dfb2ca	chore: readme inconsistency	2026-01-03 06:14:40 -08:00

1 2 3 4 5 ...

286 Commits