Pin gitleaks to version 7.6.1 to give us time to update to the 8.x releases (12/21) about caulking HOT 8 CLOSED

Version pinning generally doesn't work with brew -- so we'd need to specify a release from GitHub downloads. This could be OK as we could then also checksum the file (or check the signature, if there is one).

from caulking.

if we install outside of brew, it'd also mean we can install caulking without admin rights on our machines, which is a huge plus, IMO

from caulking.

FYI that gitleaks is now at 8.1.1. It's also looking like this might be more critical to fix given that this has to work for us, and the next time anyone runs an install of it it's going to pull the latest version, breaking the caulking script. I now can't commit with it installed, for instance.

from caulking.

I think I have this mostly worked out for downloading the 7.6.1 release from GitHub, but I am unsure of the checksum or signature checking part. @pburkholder I can start a draft PR with what I have so far to work off of, or if you have time to pair a bit on this I'd appreciate it. Thanks!

from caulking.

I did start some preliminary work to get things working with the latest release and I think I figured out that path forward as well, but it looks like a lot of the tests will need to be updated, or some other config option(s) toggled that I missed and am unaware of.

from caulking.

FYI that gitleaks has already updated to 8.2.1.

from caulking.

A PR is now in place! Thanks, @pburkholder.

#57

from caulking.

PR is merged! We'll revisit gitleaks in the near future to get it fully updated.

from caulking.