analogj / gitmask Goto Github PK

View Code? Open in Web Editor NEW

447.0 12.0 18.0 8.62 MB

Contribute Code Anonymously

Home Page: http://www.gitmask.com

License: MIT License

Python 100.00%

privacy-protection privacy privacy-tools github git anonymous aws-lambda serverless-framework

gitmask's Introduction

Gitmask

Contribute Code Anonymously

Introduction

Gitmask is an open source hosted service that allows you to contribute to Github projects anonymously. It mimics a standard git remote, however all identifying information (author names, email and timestamps) embedded in your commits are stripped, before forwarding a squashed commit to the target repository as a pull request.

Features

Does not require a Github account - Gitmask is completely anonymous
Mimic's a standard git remote, allowing you to keep your normal development workflow and tools.
Automatically creates a pull request against target repository & branch
Hosted Open Source project. Use gitmask.com or run it yourself if you're privacy conscious.
Inline progress logs
Coming Soon Allows you to anonymously comment on Pull Requests opened by Gitmask, to provide context to your commits.

Why?

There's a number of reasons why you may want to contribute to a Github project anonymously.

Government - you may live in a country/region where the government tracks your contributions online
Career - you may be contributing to a project that your employer may not approve of
Security - you may want to contribute to a project that implies financial interest
Prove a point - you may want to write something controversial to start a discussion.
You just value your privacy.

Getting Started

git clone https://github.com/AnalogJ/gitmask.git
git checkout -b feat_branch
echo "update readme" >> README.md
git commit -am "Commits will be squashed and messages overwritten"
git remote add gitmask https://git.gitmask/v1/gh/AnalogJ/gitmask
git push gitmask feat_branch:master

# Gitmask will strip identifying information from your commits.
# You will be provided with a direct link to the pull request.

Configuration

Coming Soon

Testing

Coming Soon

Contributing

Gitmask is written as a serverless project, specifically configured for the AWS Lambda Python runtime

You can run it locally by doing the the following:

Create an AWS account where your gitmask run.
Install nodejs, python, serverless-framework and aws-cli.
Create and setup the AWS user for the deployment.
- Set up the credentials with aws configure
- You may use the AWS account root user.
- You can create a new IAM user with restrict permissions.
  - https://serverless.com/blog/abcs-of-iam-permissions/ may help you.
Issue your github access token
- Go to github Settings > Developer settings > Personal access tokens
- Run generate new token
  - scopes
    - public_repo

Configure following environment variables:

Variable	Value
GITHUB_API_TOKEN	github personal access token
GITHUB_USER	github username of the personal access token
GITMASK_SERVICE	Your own service name for gitmask, e.g. myown-gitmask-api.
GITMASK_SERVICE_NORMALIZE	Normalized value for GITMASK_SERVICE,removing special characters and captalize the first letter. e.g. Myowngitmaskapi
CIRCLE_SHA1	Set the value retrieved by `git rev-parse --short HEAD`

Run deployment
```
npm install -g serverless
npm install
pipenv install
sls deploy
```
- The URLs for endpoints are shown.
  - You can redisplay that with sls info

Serverless offline

sls requirements install
PYTHONPATH=~/Library/Caches/serverless-python-requirements/2674a9f8121c5816727ff9f31e4684c72875956b15f0bbb0eb0d69838d6ad47b_slspyc sls offline start

Useful Commands

GIT_TRACE=1 GIT_TRACE_PACKFILE=~/repos/gitmask/packfile.txt GIT_TRACE_CURL=2 GIT_CURL_VERBOSE=2 git push test beta2
git unpack-objects -r < ~/repos/gitmask/packfile.txt

References

Logo

hacker icon designed by sultan mohammed

gitmask's People

Contributors

Stargazers

Watchers

Forkers

dottorblaster trinhlbk1991 bpmcontrol jkimmason nivir theotherside dmarti vinwz shashishailaj stethd mpfled arlm ikedam dc-avasilev bish0polis pantyhose-x iq-scm sitedata

gitmask's Issues

timeout connecting to port 443

Is this service dead?

$ git push gitmask properSilent
fatal: unable to access 'https://git.gitmask.com/xxx/xxx.git/': Failed to connect to git.gitmask.com port 443: Timed out

update bucket policy to automatically cleanup all bundles after x minutes.

Typo on front page

Unfortunately that means that every commit you every make is visible to everyone. Every commit.

handle race condition in beta

multiple pushes to the same dest repo (should fork multiple times?)

End of support?

Is GitMask discontinued?

Need a docs

I'm a bit confused on how to use this can you please create a doc file

HTTPS

You need it… https://doesmysiteneedhttps.com/

Why you should always use HTTPS (no matter whether the site is static etc.):

IT security specialist: https://scotthelme.co.uk/still-think-you-dont-need-https/
Google: https://developers.google.com/web/fundamentals/security/encrypt-in-transit/why-https

Add option to leave original author

This may be pushing GitMask beyond its intended purpose. I'm currently looking at Git Mask to allow submitting pull requests without a GitHub account. I actually want the Git author left alone. We could add an optional param that allows this to be configured per request.

I'd be willing to submit a PR if this was considered useful.

determine if we can send logs for the uploading user (pastebin?)

currently there's now way for users to debug failed bundle uploads to gitmask. Is there a way we can return a url after uploading to S3 and return the logs that the user can see?

maybe via a service like pastebin?

Issue with DockerFile

Hi,

Using DockerFile i created a docker Image, Http was working fine. but getting error with https://

while creating image got this error. Also when i looked into the docker's "/srv/letsencrypt/" certs folder was missing.

Error:

Removing intermediate container f306e91bdab5
Step 5 : RUN curl --silent --show-error --retry 5 https://bootstrap.pypa.io/get-pip.py | sudo python2.7
---> Running in 89f87683332f
Collecting pip
/tmp/tmp9EMMYE/pip.zip/pip/vendor/requests/packages/urllib3/util/ssl.py:315: SNIMissingWarning: An HTTPS request has been made, but the SNI (Subject Name Indication) extension to TLS is not available on this platform. This may cause the server to present an incorrect TLS certificate, which can cause validation failures. For more information, see https://urllib3.readthedocs.org/en/latest/security.html#snimissingwarning.
/tmp/tmp9EMMYE/pip.zip/pip/vendor/requests/packages/urllib3/util/ssl.py:120: InsecurePlatformWarning: A true SSLContext object is not available. This prevents urllib3 from configuring SSL appropriately and may cause certain SSL connections to fail. For more information, see https://urllib3.readthedocs.org/en/latest/security.html#insecureplatformwarning.
Downloading pip-8.0.2-py2.py3-none-any.whl (1.2MB)
Collecting setuptools
Downloading setuptools-19.7-py2.py3-none-any.whl (472kB)
Collecting wheel
Downloading wheel-0.26.0-py2.py3-none-any.whl (63kB)
Installing collected packages: pip, setuptools, wheel
Successfully installed pip-8.0.2 setuptools-19.7 wheel-0.26.0
/tmp/tmp9EMMYE/pip.zip/pip/vendor/requests/packages/urllib3/util/ssl.py:120: InsecurePlatformWarning: A true SSLContext object is not available. This prevents urllib3 from configuring SSL appropriately and may cause certain SSL connections to fail. For more information, see https://urllib3.readthedocs.org/en/latest/security.html#insecureplatformwarning.
---> 10c2e361ddda
Removing intermediate container 89f87683332f
Step 6 : RUN sudo pip install --pre github3.py
---> Running in b5fa50bc4268
Collecting github3.py
/usr/local/lib/python2.7/dist-packages/pip/vendor/requests/packages/urllib3/util/ssl.py:315: SNIMissingWarning: An HTTPS request has been made, but the SNI (Subject Name Indication) extension to TLS is not available on this platform. This may cause the server to present an incorrect TLS certificate, which can cause validation failures. For more information, see https://urllib3.readthedocs.org/en/latest/security.html#snimissingwarning.
SNIMissingWarning
/usr/local/lib/python2.7/dist-packages/pip/vendor/requests/packages/urllib3/util/ssl.py:120: InsecurePlatformWarning: A true SSLContext object is not available. This prevents urllib3 from configuring SSL appropriately and may cause certain SSL connections to fail. For more information, see https://urllib3.readthedocs.org/en/latest/security.html#insecureplatformwarning.
InsecurePlatformWarning

Is the service offline?

Kinda need it ASAP, and it's returning 403 for each and every endpoint

{"message":"Forbidden"}

Thanks! ^^

Create tor hidden service version

This service .onion version to get tor traffic and prevent traffic leak by poorly configured resolver

use reduced redundancy s3 storage.

files are automatically deleted after 1 day anyways, but we could also set "reduced redundancy"

gitMask don't create pull request

I follow the tutorial on site, below is the commands that i used:

git clone https://github.com/Urahara/rotacao
cd rotacao
git checkout -b teste
# change some file
git add 
git commit -m "testing gitMask"
git bundle create commits.bundle origin/master
curl -L -X PUT --upload-file commits.bundle https://git.gitmask.com/v1/bundle/github.com/Urahara/rotacao/master

I don't get any error or anything, i did something wrong?

Maintainers can get the outline of the request from commit messages.
The pull request can be more descriptive by splitting commits in appropriate logical units.

I believe it can be done by running this command in the branch created from the bundle instead of merging that branch into the target branch and squashing commits:

git rebase -f  ${destBranchName} -x "git commit --amend --reset-author"

Auth token is missed

Hi,
I'm getting {"message":"Missing Authentication Token"}%. Is there any authorization required?