Dev -> Stable 3.0#3079
Open
TheTechromancer wants to merge 675 commits intostablefrom
Open
Conversation
…ction Filter duplicate JWT detection in badsecrets
…tions Improve azure functions
…actions/dev/github-actions-674967a53d Bump actions/upload-artifact from 6 to 7 in the github-actions group
- BaseTarget no longer subclasses RadixTarget; uses composition instead - Rename strict_dns_scope -> strict_scope everywhere - Update host_size_key import path for radixtarget 4.x - Handle radixtarget 4.x API changes (strings-only, no _add, hash is int) - Skip acl_mode when strict_scope is True (mutually exclusive in 4.x) - Update test assertions for new hash values and string-based hosts Work in progress - more test fixes needed.
# Conflicts: # bbot/scanner/scanner.py # bbot/test/test_step_1/test_python_api.py
…r-version-compat # Conflicts: # bbot/modules/baddns_direct.py # bbot/modules/badsecrets.py # docs/modules/lightfuzz.md # docs/scanning/presets_list.md
…r-version-compat # Conflicts: # bbot/modules/baddns_direct.py # bbot/modules/badsecrets.py # docs/modules/lightfuzz.md # docs/scanning/presets_list.md
…cope filtering - Remove ASN event emission (already handled by asn report module via asndb) - Replace scope_distance_modifier+filter_event with proper in_scope_only class attr - Dynamically set scope_distance_modifier=1 when in_scope_only option is disabled - Add tests for in_scope_only=True and in_scope_only=False behavior
…ibrary Migrate to asndb library
Fix double-request bug in pgp module
added module for trajan (https://github.com/praetorian-inc/trajan)
Fix docs pipeline
…nado-6.5.5 Bump tornado from 6.5.4 to 6.5.5
Fix docs pipeline, again
Bumps [ruff](https://github.com/astral-sh/ruff) from 0.15.10 to 0.15.12. - [Release notes](https://github.com/astral-sh/ruff/releases) - [Changelog](https://github.com/astral-sh/ruff/blob/main/CHANGELOG.md) - [Commits](astral-sh/ruff@0.15.10...0.15.12) --- updated-dependencies: - dependency-name: ruff dependency-version: 0.15.12 dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
headers: 1150 → 289 (-75%); removed pecl_http C constants, CGI env vars, HTTP status reason phrases, PHP superglobals, Apache module names, WAP-era device cruft, defunct platforms (BAE/FirePHP/Tomboy/Mosso/Prototype.js/ Hixie-76 WebSocket/RFC2965 Cookie2), per-app webhook signatures and CSRF headers, and joke/typo/fragment entries. parameters: 6514 → 5224 (-20%); removed case-insensitive duplicates, numbered single-app dump residue (u1-u50, sql* series), pfSense WebGUI form fields, SMF install fields, phpMyAdmin admin-form fields, phpBB forum-specific entries, ID3 audio-tag tool entries, all 1- and 2-letter entries, and 3-letter entries that aren't well-known abbreviations.
…ute_short options
…/ruff-0.15.12 Bump ruff from 0.15.10 to 0.15.12
Updates the requirements on [pytest](https://github.com/pytest-dev/pytest) to permit the latest version. - [Release notes](https://github.com/pytest-dev/pytest/releases) - [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst) - [Commits](pytest-dev/pytest@8.3.1...9.0.3) --- updated-dependencies: - dependency-name: pytest dependency-version: 9.0.3 dependency-type: direct:development ... Signed-off-by: dependabot[bot] <support@github.com>
…ing http protocols
…t-cleanup Paramminer Cleanup / Update
Neo4j fix - serialize host_metadata
enhancement: in fingerprintx, emit `URL_UNVERIFIED` event upon detecting http protocols
inspect.getsource(cls) relies on linecache heuristics that mis-anchor on Python 3.13+ and can return a single indented attribute line, which ast.parse rejects with IndentationError. Read the whole source file instead — each baddns submodule is one class per file.
fix(test): parse baddns submodule source from file (Py 3.13+ fix)
Adds linktr.ee profile detection to the existing social module, alongside LinkedIn / GitHub / Discord / etc. The username pattern is the 3-30 character window of [a-zA-Z0-9._] that Linktree uses on its sign-up page. Extends test_module_social.TestSocial with a Linktree fixture and asserts both the canonical url and profile_name fields on the emitted SOCIAL event. Closes #2399
Add Linktree to social module (#2399)
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
| preset_file.write_text("target:\n - targets.txt\nseeds:\n - seeds.txt\nblacklist:\n - blacklist.txt\n") | ||
| preset = Preset.from_yaml_file(str(preset_file)) | ||
| target_inputs = set(preset._target_list) | ||
| assert "evilcorp.com" in target_inputs |
| assert "1.2.3.4" in target_inputs | ||
| assert "targets.txt" not in target_inputs | ||
| seed_inputs = set(preset._seeds) | ||
| assert "seed1.evilcorp.com" in seed_inputs |
| assert "targets.txt" not in target_inputs | ||
| seed_inputs = set(preset._seeds) | ||
| assert "seed1.evilcorp.com" in seed_inputs | ||
| assert "seed2.evilcorp.com" in seed_inputs |
| assert "seed1.evilcorp.com" in seed_inputs | ||
| assert "seed2.evilcorp.com" in seed_inputs | ||
| blacklist_inputs = set(preset._blacklist) | ||
| assert "internal.evilcorp.com" in blacklist_inputs |
| ) | ||
| preset2 = Preset.from_yaml_file(str(preset_file2)) | ||
| target_inputs2 = set(preset2._target_list) | ||
| assert "evilcorp.com" in target_inputs2 |
| target_inputs3 = set(preset3._target_list) | ||
| assert "evilcorp.com" in target_inputs3 | ||
| assert "1.2.3.4" in target_inputs3 | ||
| assert "extra.evilcorp.com" in target_inputs3 |
| nested_preset.write_text("target:\n - my_targets.txt\n") | ||
| preset5 = Preset.from_yaml_file(str(nested_preset)) | ||
| target_inputs5 = set(preset5._target_list) | ||
| assert "nested.evilcorp.com" in target_inputs5 |
| "evilcorp.com # the main domain", | ||
| ], | ||
| ) | ||
| assert "evilcorp.com" in target.seeds |
| ) | ||
|
|
||
| result = chain_lists([str(target_file)], try_files=True, _strip_comments=True) | ||
| assert "evilcorp.com" in result |
|
|
||
| result = chain_lists([str(target_file)], try_files=True, _strip_comments=True) | ||
| assert "evilcorp.com" in result | ||
| assert "othercorp.com" in result |
Contributor
|
I have read the CLA Document and I hereby sign the CLA 0 out of 4 committers have signed the CLA. |
|
I have read the CLA Document and I hereby sign the CLA |
Contributor
🚀 Performance Benchmark Report
📊 Current Results (dev) - Click to expandResults
🐍 Python Version 3.11.15 |
|
I have read the CLA Document and I hereby sign the CLA
…-------- Original Message --------
On Monday, 05/04/26 at 20:07 github-actions[bot] ***@***.***> wrote:
github-actions[bot] left a comment [(blacklanternsecurity/bbot#3079)](#3079 (comment))
🚀 Performance Benchmark Report
> ℹ️ No baseline benchmark data available
>
> Showing current results for dev only.
📊 Current Results (dev) - Click to expand
Results
Test Name Mean Time Ops/sec Min Max
Bloom Filter Dns Mutation Tracking Performance 4.12ms 242.6 ops/sec 4.09ms 4.17ms
Bloom Filter Large Scale Dns Brute Force 17.33ms 57.7 ops/sec 17.17ms 17.63ms
Large Closest Match Lookup 356.76ms 2.8 ops/sec 348.95ms 358.71ms
Realistic Closest Match Workload 191.18ms 5.2 ops/sec 188.25ms 194.24ms
Event Memory Medium Scan 2.197s 0.5 ops/sec 2.087s 2.363s
Event Memory Large Scan 10.850s 0.1 ops/sec 10.624s 11.127s
Event Validation Full Scan Startup Small Batch 406.67ms 2.5 ops/sec 400.26ms 411.14ms
Event Validation Full Scan Startup Large Batch 574.81ms 1.7 ops/sec 567.77ms 579.13ms
Make Event Autodetection Small 31.41ms 31.8 ops/sec 31.33ms 31.50ms
Make Event Autodetection Large 321.98ms 3.1 ops/sec 320.93ms 323.65ms
Make Event Explicit Types 14.09ms 71.0 ops/sec 14.02ms 14.16ms
Excavate Single Thread Small 4.046s 0.2 ops/sec 3.982s 4.082s
Excavate Single Thread Large 9.888s 0.1 ops/sec 9.767s 9.991s
Excavate Parallel Tasks Small 4.178s 0.2 ops/sec 4.125s 4.210s
Excavate Parallel Tasks Large 7.323s 0.1 ops/sec 7.248s 7.354s
Is Ip Performance 3.23ms 310.1 ops/sec 3.18ms 5.11ms
Make Ip Type Performance 11.72ms 85.3 ops/sec 11.62ms 12.58ms
Mixed Ip Operations 4.61ms 216.8 ops/sec 4.56ms 5.01ms
Memory Use Web Crawl 481ns 2079.0K ops/sec 481ns 481ns
Memory Use Subdomain Enum 571ns 1751.3K ops/sec 571ns 571ns
Scan Throughput 100 7.355s 0.1 ops/sec 6.334s 8.383s
Scan Throughput 1000 36.391s 0.0 ops/sec 35.854s 36.995s
Typical Queue Shuffle 64.03µs 15.6K ops/sec 59.64µs 722.31µs
Priority Queue Shuffle 726.13µs 1.4K ops/sec 683.46µs 1.24ms
---------------------------------------------------------------
🐍 Python Version 3.11.15
—
Reply to this email directly, [view it on GitHub](#3079 (comment)), or [unsubscribe](https://github.com/notifications/unsubscribe-auth/AOIZCEYWQ3LFB2DNG22XZ7T4ZDS7BAVCNFSM6AAAAACYQRYROCVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHM2DGNZTG42DCMZWGY).
Triage notifications on the go with GitHub Mobile for [iOS](https://apps.apple.com/app/apple-store/id1477376905?ct=notification-email&mt=8&pt=524675) or [Android](https://play.google.com/store/apps/details?id=com.github.android&referrer=utm_campaign%3Dnotification-email%26utm_medium%3Demail%26utm_source%3Dgithub).
You are receiving this because you were mentioned.Message ID: ***@***.***>
|
…/pytest-gte-8.3.1-and-lt-10 Update pytest requirement from <9,>=8.3.1 to >=8.3.1,<10
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
10 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Improvements