From nobody Wed Apr 05 17:33:15 2023 X-Original-To: dev-commits-ports-main@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4PsBYS2YL9z43p5M; Wed, 5 Apr 2023 17:33:16 +0000 (UTC) (envelope-from git@FreeBSD.org) Received: from mxrelay.nyi.freebsd.org (mxrelay.nyi.freebsd.org [IPv6:2610:1c1:1:606c::19:3]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256 client-signature RSA-PSS (4096 bits) client-digest SHA256) (Client CN "mxrelay.nyi.freebsd.org", Issuer "R3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 4PsBYS1Sdtz47Lm; Wed, 5 Apr 2023 17:33:16 +0000 (UTC) (envelope-from git@FreeBSD.org) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1680715996; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding; bh=XoNTyWn9VxANztUqRr4HrEicDsWeudIephh+jXnf8RA=; b=ixD3fqIh7cpSxHh42Y82h2oecUp1Ow9+tdP+4XFGbWZjw0wVPnENkoiSed+ymGU9PszgNA N4q4rFrG1VAHyzeQOn0uU7n1r5dsyu9w5lfgJPFFYBIuwpNbAxe1yQ0mgMNLrff9PFIvLE p84fSTCsZ43tpyFNHP6ritXE1b4DDRL7UK/MU7Ga4W5D7HaGuT2OgnYkbfDMkqUynoOwSz rn4w2GN+BdXVifm9FXujHaeody4lphM8DbY/hJBPu4GAGFkEvu1P0VF5hS0/bnAmnqWp7H X13OIT/e+UjZCNyoP5AzH133TWuZJSY/do3ooLw/e9kKZFjSuFnZ1TXvE1gPPg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=freebsd.org; s=dkim; t=1680715996; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding; bh=XoNTyWn9VxANztUqRr4HrEicDsWeudIephh+jXnf8RA=; b=O0GkeAozsQyle4iOccNLclFf6qB6STmn8W4L57jsqxyz63Xt6rg7pF4R8XgIANMpGEt2i4 9JvBDIyAqoGebz0kpPVVTF7Q+g/Db4cr4gT/Q3m//eNkH1DuWO3ngDgBflZlez1rdxkdYy jEk2JX9jyk1t31jlbKNgsw/DH15hlYjDO+3xmatn2ywio97rziS3Zvo1xc/eEEzcLSgTQW H6A15AYjucRUgTMNZGZGok1hSpEJKWEiqzdQ9YWOLc56y+S/sEM/1yVrOacSnB5GWMqZ8n 9ZO5qNqWbAuhYhQOGS0Yc7PNMLkGf1XD8D0p8dOMEOgzWRNzLDUBdRJGy/V4rA== ARC-Authentication-Results: i=1; mx1.freebsd.org; none ARC-Seal: i=1; s=dkim; d=freebsd.org; t=1680715996; a=rsa-sha256; cv=none; b=JrHcvbDh0UOe0Lpx0eO9lqj0ujcYeDl/Lk9OLw+/ZMm8txuHcqFEjj5jOdImxqe7WQk5DS 4CYQLmlKXv9ca7ByssTI0rWbgA2kkDRvuAT0a4vCgw0yQ/RjaQEVsLFcruspOUVvDmjcLG HLSyEYYfwoG8AETBPRubzTwi/rQA+FjNjYQgADIGCHuv5HLqwC64w6bE61rYVWuEO8C2Pd L9ImGn2pn0YuDgVO04ho3dMK4bUKMmKI08KbJ1eJydLKkMKagI7GlT60qFhbPOl/GhncEZ HG9cTq1mM4+S8uk7OjB+wn1xeihJzEOb3qz/aU9G+Q+gvjydjVGx+37Rs3T1sg== Received: from gitrepo.freebsd.org (gitrepo.freebsd.org [IPv6:2610:1c1:1:6068::e6a:5]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (Client did not present a certificate) by mxrelay.nyi.freebsd.org (Postfix) with ESMTPS id 4PsBYS0TgRzWpt; Wed, 5 Apr 2023 17:33:16 +0000 (UTC) (envelope-from git@FreeBSD.org) Received: from gitrepo.freebsd.org ([127.0.1.44]) by gitrepo.freebsd.org (8.16.1/8.16.1) with ESMTP id 335HXFmW083254; Wed, 5 Apr 2023 17:33:15 GMT (envelope-from git@gitrepo.freebsd.org) Received: (from git@localhost) by gitrepo.freebsd.org (8.16.1/8.16.1/Submit) id 335HXFXu083253; Wed, 5 Apr 2023 17:33:15 GMT (envelope-from git) Date: Wed, 5 Apr 2023 17:33:15 GMT Message-Id: <202304051733.335HXFXu083253@gitrepo.freebsd.org> To: ports-committers@FreeBSD.org, dev-commits-ports-all@FreeBSD.org, dev-commits-ports-main@FreeBSD.org From: Po-Chuan Hsieh Subject: git: dad043a77797 - main - devel/py-dodgy: Add py-dodgy 0.2.1 List-Id: Commits to the main branch of the FreeBSD ports repository List-Archive: https://lists.freebsd.org/archives/dev-commits-ports-main List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-dev-commits-ports-main@freebsd.org X-BeenThere: dev-commits-ports-main@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 8bit X-Git-Committer: sunpoet X-Git-Repository: ports X-Git-Refname: refs/heads/main X-Git-Reftype: branch X-Git-Commit: dad043a7779798a228bce76d38bb72a3c257bfc0 Auto-Submitted: auto-generated X-ThisMailContainsUnwantedMimeParts: N The branch main has been updated by sunpoet: URL: https://cgit.FreeBSD.org/ports/commit/?id=dad043a7779798a228bce76d38bb72a3c257bfc0 commit dad043a7779798a228bce76d38bb72a3c257bfc0 Author: Po-Chuan Hsieh AuthorDate: 2023-04-05 17:07:23 +0000 Commit: Po-Chuan Hsieh CommitDate: 2023-04-05 17:29:38 +0000 devel/py-dodgy: Add py-dodgy 0.2.1 Dodgy is a very basic tool to run against your codebase to search for "dodgy" looking values. It is a series of simple regular expressions designed to detect things such as accidental SCM diff checkins, or passwords or secret keys hard coded into files. While this is primarily aimed at open source projects (for whom a publicly available secret key is pretty dangerous), it can also be used in private projects, with the caveat that it will point out things which are not a problem for private projects and is not configurable enough currently to change that. Another note - this tool is probably best run pre-commit, since it will hopefully prevent dodgy things being checked in. To automatically execute before a commit use a git pre-commit hook. --- devel/Makefile | 1 + devel/py-dodgy/Makefile | 19 +++++++++++++++++++ devel/py-dodgy/distinfo | 3 +++ devel/py-dodgy/pkg-descr | 13 +++++++++++++ 4 files changed, 36 insertions(+) diff --git a/devel/Makefile b/devel/Makefile index 26ccd15a6148..2c3a609f9efd 100644 --- a/devel/Makefile +++ b/devel/Makefile @@ -4528,6 +4528,7 @@ SUBDIR += py-dockerpty SUBDIR += py-docopt SUBDIR += py-doctest-ignore-unicode + SUBDIR += py-dodgy SUBDIR += py-dogpile.cache SUBDIR += py-doit SUBDIR += py-dotted diff --git a/devel/py-dodgy/Makefile b/devel/py-dodgy/Makefile new file mode 100644 index 000000000000..819c6ade072d --- /dev/null +++ b/devel/py-dodgy/Makefile @@ -0,0 +1,19 @@ +PORTNAME= dodgy +PORTVERSION= 0.2.1 +CATEGORIES= devel python +MASTER_SITES= PYPI +PKGNAMEPREFIX= ${PYTHON_PKGNAMEPREFIX} + +MAINTAINER= sunpoet@FreeBSD.org +COMMENT= Search for dodgy looking lines in Python code +WWW= https://github.com/landscapeio/dodgy + +LICENSE= MIT +LICENSE_FILE= ${WRKSRC}/LICENSE + +USES= python:3.7+ +USE_PYTHON= autoplist concurrent distutils + +NO_ARCH= yes + +.include diff --git a/devel/py-dodgy/distinfo b/devel/py-dodgy/distinfo new file mode 100644 index 000000000000..ed58167ad123 --- /dev/null +++ b/devel/py-dodgy/distinfo @@ -0,0 +1,3 @@ +TIMESTAMP = 1679498490 +SHA256 (dodgy-0.2.1.tar.gz) = 28323cbfc9352139fdd3d316fa17f325cc0e9ac74438cbba51d70f9b48f86c3a +SIZE (dodgy-0.2.1.tar.gz) = 4896 diff --git a/devel/py-dodgy/pkg-descr b/devel/py-dodgy/pkg-descr new file mode 100644 index 000000000000..0335a2f7ded5 --- /dev/null +++ b/devel/py-dodgy/pkg-descr @@ -0,0 +1,13 @@ +Dodgy is a very basic tool to run against your codebase to search for "dodgy" +looking values. It is a series of simple regular expressions designed to detect +things such as accidental SCM diff checkins, or passwords or secret keys hard +coded into files. + +While this is primarily aimed at open source projects (for whom a publicly +available secret key is pretty dangerous), it can also be used in private +projects, with the caveat that it will point out things which are not a problem +for private projects and is not configurable enough currently to change that. + +Another note - this tool is probably best run pre-commit, since it will +hopefully prevent dodgy things being checked in. To automatically execute before +a commit use a git pre-commit hook.