tartufo icon indicating copy to clipboard operation
tartufo copied to clipboard

Published 20 hours ago verified publisher icon godaddy

Add support for LFS files

Open aharris1-godaddy opened this issue 2 years ago • 0 comments

Feature Request

Is your feature request related to a problem? Please describe.

Tartufo will currently flag all LFS files based on the SHA256 object id contained in the LFS pointer files rather than looking at the actual file contents. Unfortunately this means we need to add blanket rules to ignore all LFS files regardless of the contents which removes any safeguards Tartufo provides for these files.

Describe the solution you'd like

Ideally Tartufo would be able to follow the pointer file and scan the actual LFS file contents for secrets.

aharris1-godaddy avatar Aug 04 '21 23:08 aharris1-godaddy