{"id":13843531,"url":"https://github.com/pownjs/git","last_synced_at":"2025-07-11T19:32:01.018Z","repository":{"id":42216659,"uuid":"173510387","full_name":"pownjs/git","owner":"pownjs","description":"Assorted tools for security-related task for git repositories","archived":false,"fork":false,"pushed_at":"2022-04-10T03:28:16.000Z","size":196,"stargazers_count":59,"open_issues_count":5,"forks_count":2,"subscribers_count":4,"default_branch":"master","last_synced_at":"2024-11-16T11:48:21.401Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"","language":"JavaScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/pownjs.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2019-03-02T23:33:04.000Z","updated_at":"2023-04-08T18:28:17.000Z","dependencies_parsed_at":"2022-08-12T09:50:41.724Z","dependency_job_id":null,"html_url":"https://github.com/pownjs/git","commit_stats":null,"previous_names":["pownjs/pown-git"],"tags_count":17,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/pownjs%2Fgit","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/pownjs%2Fgit/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/pownjs%2Fgit/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/pownjs%2Fgit/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/pownjs","download_url":"https://codeload.github.com/pownjs/git/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":225755019,"owners_count":17519189,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-08-04T17:02:12.005Z","updated_at":"2024-11-21T15:31:05.799Z","avatar_url":"https://github.com/pownjs.png","language":"JavaScript","readme":"[![Follow on Twitter](https://img.shields.io/twitter/follow/pownjs.svg?logo=twitter)](https://twitter.com/pownjs)\n[![NPM](https://img.shields.io/npm/v/@pown/git.svg)](https://www.npmjs.com/package/@pown/git)\n[![Fury](https://img.shields.io/badge/version-2x%20Fury-red.svg)](https://github.com/pownjs/lobby)\n![default workflow](https://github.com/pownjs/git/actions/workflows/default.yaml/badge.svg)\n[![SecApps](https://img.shields.io/badge/credits-SecApps-black.svg)](https://secapps.com)\n\n# Pown Git\n\nPown Git is a comprehensive security scanning and testing solution for git repostories.\n\n## Credits\n\nSome signatures were borrowed or heavily inspired by the following projects:\n\n* gitgit - https://github.com/zricethezav/gitgit\n* shhgit - https://github.com/eth0izzle/shhgit\n\nThis tool is part of [secapps.com](https://secapps.com) open-source initiative.\n\n```\n  ___ ___ ___   _   ___ ___  ___\n / __| __/ __| /_\\ | _ \\ _ \\/ __|\n \\__ \\ _| (__ / _ \\|  _/  _/\\__ \\\n |___/___\\___/_/ \\_\\_| |_|  |___/\n  https://secapps.com\n```\n\n### Authors\n\n* [@pdp](https://twitter.com/pdp) - https://pdparchitect.github.io/www/\n\n## Quickstart\n\nThis tool is meant to be used as part of [Pown.js](https://github.com/pownjs/pown), but it can be invoked separately as an independent tool.\n\nInstall Pown first as usual:\n\n```sh\n$ npm install -g pown@latest\n```\n\nInstall git:\n\n```sh\n$ pown modules install @pown/git\n```\n\nInvoke directly from Pown:\n\n```sh\n$ pown git\n```\n\n### Standalone Use\n\nInstall this module locally from the root of your project:\n\n```sh\n$ npm install @pown/git --save\n```\n\nOnce done, invoke pown cli:\n\n```sh\n$ POWN_ROOT=. ./node_modules/.bin/pown-cli git\n```\n\nYou can also use the global pown to invoke the tool locally:\n\n```sh\n$ POWN_ROOT=. pown git\n```\n\n## Usage\n\n\u003e **WARNING**: This pown command is currently under development and as a result will be subject to breaking changes.\n\n```\npown-cli git \u003ccommand\u003e\n\nGit security toolkit\n\nCommands:\n  pown-cli git clone \u003curi\u003e [dir]  Clone git repository  [aliases: c]\n  pown-cli git people \u003crepo\u003e      Extract all authors and committers in repository  [aliases: p]\n  pown-cli git leaks \u003crepo\u003e       Search for leaks in git repository  [aliases: l, leak]\n\nOptions:\n  --version  Show version number  [boolean]\n  --help     Show help  [boolean]\n\npown-cli git clone \u003curi\u003e [dir]\n\nClone git repository\n\nOptions:\n  --version           Show version number  [boolean]\n  --help              Show help  [boolean]\n  --ref, -r           Which branch to checkout. By default this is the designated \"main branch\" of the repository.  [string]\n  --depth, -d         Determines how much of the git repository's history to retrieve.  [number] [default: 10000]\n  --singleBranch, -b  Instead of the default behavior of fetching all the branches, only fetch a single branch.  [boolean] [default: true]\n  --githubKey         GitHub API Key. The key is either in the format username:password or username:token.  [string]\npown-cli git leaks \u003crepo\u003e\n\nSearch for leaks in git repository\n\nOptions:\n  --version          Show version number  [boolean]\n  --help             Show help  [boolean]\n  --ref, -r          Which branch to scan. By default this is the designated \"main branch\" of the repository.  [string]\n  --depth, -d        Determines how much of the git repository's history to retrieve.  [number] [default: Infinity]\n  --concurrency, -c  Number of workers.  [number] [default: 10]\n  --severity, -s     Miminum severity level.  [number] [default: 0]\n  --write, -w        Write results to file.  [string]\n\npown-cli git people \u003crepo\u003e\n\nExtract all authors and committers in repository\n\nOptions:\n  --version    Show version number  [boolean]\n  --help       Show help  [boolean]\n  --ref, -r    Which branch to scan. By default this is the designated \"main branch\" of the repository.  [string]\n  --depth, -d  Determines how much of the git repository's history to retrieve.  [number] [default: Infinity]\n  --write, -w  Write results to file.  [string]\n```\n\n## How To Contribute\n\nSee [pown/leaks](https://github.com/pownjs/leaks/) for instructions to how extend the leaks database.\n","funding_links":[],"categories":["JavaScript"],"sub_categories":[],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fpownjs%2Fgit","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fpownjs%2Fgit","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fpownjs%2Fgit/lists"}