Commit graph

700 commits

Author SHA1 Message Date
ab05d338e8
Add Go install instructions to README
This commit includes detailed Go install instructions for the apg-go project into the README.md. The instructions verify Go version, describe the installation of the latest version and retrieval of a specific version, and also details on how to execute apg-go. This additional information allows users with Go installed in their systems to easily use and test the apg-go project.
2024-03-26 09:52:39 +01:00
86a06adc34
Merge pull request #92 from wneessen/remove_unused_files
Remove cosign files, since we use GH for Docker
2024-03-25 19:43:09 +01:00
e1b88274eb
Remove cosign files, since we use GH for Docker 2024-03-25 19:40:47 +01:00
cac191470f
Merge pull request #91 from wneessen/improve_workflow
Update workflows to trigger on specific file changes
2024-03-25 19:34:43 +01:00
0e2df1fe07
Update workflows to trigger on specific file changes
The update limits the GolangCI, Codecov, SonarQube, and Docker workflow triggers to only fire when specific related files are modified. By focusing on relevant paths like '**.go', 'go.*' and respective workflow files, we enhance the efficiency of our CI/CD process.
2024-03-25 19:32:40 +01:00
b7b4073483
Merge pull request #90 from wneessen/feature/70_group-password-characters-in-a-smart-phone-friendly-order
Add mobile-friendly character groupoing
2024-03-25 11:53:42 +01:00
5a28adb170
Update apg-go commands in README
This commit replaces all instances of apg with apg-go in the examples of the README.md file, making them consistent and accurate. Additionally, a new feature for mobile-friendly character grouping has been hooked in. This feature improves user experience, especially for mobile users, by organising the generated passwords in a "keypad-order" grouping.
2024-03-25 11:39:46 +01:00
3c437e7238
Add mobile-friendly password grouping feature
This commit introduces a new mobile grouping feature in our password generator package. Furthermore, a new unit test was added to the 'random_test.go' file to validate this functionality. This change allows users to better handle passwords on mobile devices by altering their formation.
2024-03-25 11:31:41 +01:00
0c942a47c1
Add support for mobile-friendly password grouping
This commit introduces a new feature "MobileGrouping" that changes the way passwords are generated to be more mobile-friendly. The `config.go` file was updated to include this new attribute, along with its corresponding method given as an Option. Additionally, the respective unit test was added ensuring the proper function of this feature.
2024-03-25 11:31:31 +01:00
6a8a5bb5aa
Update APG version to 1.2.0
The version of the APG (Automatic Password Generator) package has been updated from VERSION 1.1.0 to 1.2.0. No further description of what changes have been implemented with this new version was provided in the diffs.
2024-03-25 11:31:03 +01:00
0404b68489
Add mobile-friendly character grouping option
The update adds a new command line flag '-g' for activating mobile-friendly character grouping in password generation (Algo: 1). Enabling this option can make the passwords more readable, but it also comes with the caveat of possibly reducing the password's entropy.
2024-03-25 11:30:46 +01:00
54ab50a517
Add SPDX headers to grouping files
The change includes adding SPDX headings to both 'grouping.go' and 'grouping_test.go' files. These headings not only display the copyright text but also provide the necessary license information, ensuring an understanding of the legal usage of these source code files.
2024-03-25 11:09:29 +01:00
0bb1b6c09b
Add grouping functionality and corresponding tests
Implemented a new function 'GroupCharsForMobile' in the 'apg' package, which groups characters in a mobile-friendly manner based on their Unicode category. Accompanying tests for this function have also been created in 'grouping_test.go'. This update enhances password readability on mobile devices.
2024-03-25 11:06:54 +01:00
8da604dc65
Merge pull request #89 from wneessen/dependabot/github_actions/github/codeql-action-3.24.9
Bump github/codeql-action from 3.24.8 to 3.24.9
2024-03-23 00:44:43 +01:00
dependabot[bot]
2263417aaf
Bump github/codeql-action from 3.24.8 to 3.24.9
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.24.8 to 3.24.9.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](05963f47d8...1b1aada464)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-03-22 20:02:01 +00:00
ff719d09b7
Merge pull request #84 from wneessen/dependabot/github_actions/actions/setup-go-5.0.0
Bump actions/setup-go from 3.5.0 to 5.0.0
2024-03-19 20:45:20 +01:00
850ea82828
Merge pull request #85 from wneessen/dependabot/github_actions/docker/build-push-action-5.3.0
Bump docker/build-push-action from 3.3.1 to 5.3.0
2024-03-19 20:45:06 +01:00
474c137f89
Merge pull request #86 from wneessen/dependabot/github_actions/docker/metadata-action-5.5.1
Bump docker/metadata-action from 3.3.0 to 5.5.1
2024-03-19 20:44:53 +01:00
8907dc60e1
Merge pull request #87 from wneessen/dependabot/github_actions/sonarsource/sonarqube-scan-action-9ad16418d1dd6d28912bc0047ee387e90181ce1c
Bump sonarsource/sonarqube-scan-action from 1b9d398800bf807ad36901b351fff52deba642d6 to 9ad16418d1dd6d28912bc0047ee387e90181ce1c
2024-03-19 20:44:37 +01:00
dependabot[bot]
c674235d94
Bump sonarsource/sonarqube-scan-action
Bumps [sonarsource/sonarqube-scan-action](https://github.com/sonarsource/sonarqube-scan-action) from 1b9d398800bf807ad36901b351fff52deba642d6 to 9ad16418d1dd6d28912bc0047ee387e90181ce1c.
- [Release notes](https://github.com/sonarsource/sonarqube-scan-action/releases)
- [Commits](1b9d398800...9ad16418d1)

---
updated-dependencies:
- dependency-name: sonarsource/sonarqube-scan-action
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-03-19 19:42:38 +00:00
dependabot[bot]
f7b196bfbf
Bump docker/metadata-action from 3.3.0 to 5.5.1
Bumps [docker/metadata-action](https://github.com/docker/metadata-action) from 3.3.0 to 5.5.1.
- [Release notes](https://github.com/docker/metadata-action/releases)
- [Upgrade guide](https://github.com/docker/metadata-action/blob/master/UPGRADE.md)
- [Commits](98669ae865...8e5442c4ef)

---
updated-dependencies:
- dependency-name: docker/metadata-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-03-19 19:42:34 +00:00
dependabot[bot]
d1dfac476d
Bump docker/build-push-action from 3.3.1 to 5.3.0
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 3.3.1 to 5.3.0.
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](1104d47137...2cdde995de)

---
updated-dependencies:
- dependency-name: docker/build-push-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-03-19 19:42:29 +00:00
dependabot[bot]
f4a61bf426
Bump actions/setup-go from 3.5.0 to 5.0.0
Bumps [actions/setup-go](https://github.com/actions/setup-go) from 3.5.0 to 5.0.0.
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](6edd4406fa...0c52d547c9)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-03-19 19:42:25 +00:00
760593f248
Merge pull request #83 from wneessen/dependabot/github_actions/docker/setup-buildx-action-3.2.0
Bump docker/setup-buildx-action from 2.10.0 to 3.2.0
2024-03-18 22:07:47 +01:00
7d5493c77d
Merge pull request #82 from wneessen/dependabot/github_actions/github/codeql-action-3.24.8
Bump github/codeql-action from 3.24.7 to 3.24.8
2024-03-18 22:07:32 +01:00
d4d76a0f0a
Merge pull request #81 from wneessen/dependabot/github_actions/actions/upload-artifact-4.3.1
Bump actions/upload-artifact from 3.1.0 to 4.3.1
2024-03-18 22:07:19 +01:00
bac3aa4750
Merge pull request #80 from wneessen/dependabot/github_actions/fsfe/reuse-action-3.0.0
Bump fsfe/reuse-action from 1.3.0 to 3.0.0
2024-03-18 22:07:10 +01:00
7e742a4a73
Merge pull request #79 from wneessen/dependabot/github_actions/docker/setup-qemu-action-3.0.0
Bump docker/setup-qemu-action from 2.2.0 to 3.0.0
2024-03-18 22:07:00 +01:00
dependabot[bot]
a0c312f39f
Bump docker/setup-buildx-action from 2.10.0 to 3.2.0
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 2.10.0 to 3.2.0.
- [Release notes](https://github.com/docker/setup-buildx-action/releases)
- [Commits](885d1462b8...2b51285047)

---
updated-dependencies:
- dependency-name: docker/setup-buildx-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-03-18 19:41:54 +00:00
dependabot[bot]
35cce6e2c7
Bump github/codeql-action from 3.24.7 to 3.24.8
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.24.7 to 3.24.8.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](3ab4101902...05963f47d8)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-03-18 19:41:50 +00:00
dependabot[bot]
174ca5da39
Bump actions/upload-artifact from 3.1.0 to 4.3.1
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 3.1.0 to 4.3.1.
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](3cea537223...5d5d22a312)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-03-18 19:41:45 +00:00
dependabot[bot]
df816f5ae4
Bump fsfe/reuse-action from 1.3.0 to 3.0.0
Bumps [fsfe/reuse-action](https://github.com/fsfe/reuse-action) from 1.3.0 to 3.0.0.
- [Release notes](https://github.com/fsfe/reuse-action/releases)
- [Commits](28cf8f33bc...a46482ca36)

---
updated-dependencies:
- dependency-name: fsfe/reuse-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-03-18 19:41:42 +00:00
dependabot[bot]
da5ffa7d3d
Bump docker/setup-qemu-action from 2.2.0 to 3.0.0
Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action) from 2.2.0 to 3.0.0.
- [Release notes](https://github.com/docker/setup-qemu-action/releases)
- [Commits](2b82ce82d5...68827325e0)

---
updated-dependencies:
- dependency-name: docker/setup-qemu-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-03-18 19:41:39 +00:00
4d790d3138
Merge pull request #78 from wneessen/contrib
Add CONTRIBUTING.md with contribution guidelines
2024-03-18 00:04:56 +01:00
f9314bc07c
Add CONTRIBUTING.md with contribution guidelines
The file CONTRIBUTING.md has been added to provide clear guidelines for contributors seeking to make pull requests to the project. This includes instructions on how to create effective pull requests, maintain clean commit history, and keep PRs up to date.
2024-03-18 00:04:05 +01:00
afac8e8f0e
Merge pull request #77 from wneessen/openssf_badge
Add OpenSSF Best Practices badge to README.md
2024-03-17 23:58:21 +01:00
d443446011
Add OpenSSF Best Practices badge to README.md
The OpenSSF Best Practices badge has been included in the README.md file to demonstrate the adherence of this project to the best practices set by the Open Source Security Foundation.
2024-03-17 23:57:48 +01:00
bf9cb85f9b
Merge pull request #76 from wneessen/dependabot/github_actions/ossf/scorecard-action-2.3.1
Bump ossf/scorecard-action from 2.1.2 to 2.3.1
2024-03-17 23:32:03 +01:00
7a1170b2d0
Merge pull request #74 from wneessen/dependabot/github_actions/github/codeql-action-3.24.7
Bump github/codeql-action from 2.2.4 to 3.24.7
2024-03-17 23:31:48 +01:00
abc5b90aea
Merge pull request #73 from wneessen/dependabot/github_actions/docker/login-action-3.1.0
Bump docker/login-action from 1.9.0 to 3.1.0
2024-03-17 23:31:37 +01:00
0c68f136ea
Merge pull request #72 from wneessen/dependabot/github_actions/golangci/golangci-lint-action-4.0.0
Bump golangci/golangci-lint-action from 3.7.0 to 4.0.0
2024-03-17 23:31:26 +01:00
0a3abebb5a
Merge pull request #75 from wneessen/dependabot/github_actions/codecov/codecov-action-4.1.0
Bump codecov/codecov-action from 3.1.6 to 4.1.0
2024-03-17 23:30:59 +01:00
dependabot[bot]
1d8087b1d7
Bump ossf/scorecard-action from 2.1.2 to 2.3.1
Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.1.2 to 2.3.1.
- [Release notes](https://github.com/ossf/scorecard-action/releases)
- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)
- [Commits](e38b1902ae...0864cf1902)

---
updated-dependencies:
- dependency-name: ossf/scorecard-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-03-17 22:26:56 +00:00
dependabot[bot]
3ddc257cb5
Bump codecov/codecov-action from 3.1.6 to 4.1.0
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 3.1.6 to 4.1.0.
- [Release notes](https://github.com/codecov/codecov-action/releases)
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md)
- [Commits](ab904c41d6...54bcd8715e)

---
updated-dependencies:
- dependency-name: codecov/codecov-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-03-17 22:26:51 +00:00
dependabot[bot]
2639bb5c69
Bump github/codeql-action from 2.2.4 to 3.24.7
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2.2.4 to 3.24.7.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/v2.2.4...3ab4101902695724f9365a384f86c1074d94e18c)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-03-17 22:26:48 +00:00
dependabot[bot]
f7d220dd2b
Bump docker/login-action from 1.9.0 to 3.1.0
Bumps [docker/login-action](https://github.com/docker/login-action) from 1.9.0 to 3.1.0.
- [Release notes](https://github.com/docker/login-action/releases)
- [Commits](28218f9b04...e92390c5fb)

---
updated-dependencies:
- dependency-name: docker/login-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-03-17 22:26:43 +00:00
dependabot[bot]
134d943439
Bump golangci/golangci-lint-action from 3.7.0 to 4.0.0
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) from 3.7.0 to 4.0.0.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases)
- [Commits](3a91952989...3cfe3a4abb)

---
updated-dependencies:
- dependency-name: golangci/golangci-lint-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2024-03-17 22:26:40 +00:00
49506634bc
Merge pull request #71 from step-security-bot/stepsecurity_remediation_1710714172
[StepSecurity] Apply security best practices
2024-03-17 23:26:17 +01:00
StepSecurity Bot
35067dbf85
[StepSecurity] Apply security best practices
Signed-off-by: StepSecurity Bot <bot@stepsecurity.io>
2024-03-17 22:22:53 +00:00
5ba220f1b9
Merge pull request #69 from wneessen/add_fuzzing
Add fuzzing
2024-03-17 22:09:40 +01:00