Skip to content

Trufflehog Check

Actions
Scan for committed secrets with minimal configuration
v1.0.0
Latest
By UnicornGlobal
Star (6)

Tags

 (2)
continuous-integrationsecurity

Trufflehog Action

Scan recent commits in repository for secrets with trufflehog.

Usage

steps:
- uses: actions/checkout@v2
- uses: UnicornGlobal/trufflehog-actions-scan@master
  with:
    branch: ${{ github.head_ref }}

This will make sure it only runs on the branch that's been pushed

Upstream

Based on: https://github.com/edplato/trufflehog-actions-scan

Why the changes?

We don't want to add a special key when we already have a local copy of the git repo. There is no need to check remotely.

We also don't need special config flags so we removed that functionality too.

We had to change a lot to get it to work.

MIT License

Resources

Pull requests (0)View source codeReport abuse

Trufflehog Check is not certified by GitHub. It is provided by a third-party and is governed by separate terms of service, privacy policy, and support documentation.

About

Scan for committed secrets with minimal configuration
v1.0.0
Latest
By UnicornGlobal

Tags

 (2)
continuous-integrationsecurity

Resources

Pull requests (0)View source codeReport abuse

Trufflehog Check is not certified by GitHub. It is provided by a third-party and is governed by separate terms of service, privacy policy, and support documentation.