trufflehog

trufflehog copied to clipboard

Update secrets workflow to check out refs from forks

3

### Description: The secrets check currently fails on PRs from forks because it attempts to fetch the branch from this repository: ``` Run actions/checkout@v4 Syncing repository: trufflesecurity/trufflehog ... # https://github.com/trufflesecurity/trufflehog/pull/2234/checks...

rgmz

--github-actions option removal

6

Is there a way how to get rid of --github-actions default option for trufflehog action?

xxfogs

added azure active directory app secret detector

1

### Description: added azure active directory app secret detector ### Checklist: * [ ] Tests passing (`make test-community`)? * [ ] Lint passing (`make lint` this requires [golangci-lint](https://golangci-lint.run/usage/install/#local-installation))?

roxanne-tampus

Adding Datadog secrets checks for all regions

1

Please review the [Community Note](https://github.com/trufflesecurity/trufflehog/blob/main/.github/community_note.md) before submitting ## Description Being able to check for valid datadog keys on all regions ### Preferred Solution Sending an API check on every region...

carlesjavierre

error unarchiving chunk: input type must be an io.ReaderAt and io.Seeker because of zip format constraints

3

Please review the [Community Note](https://github.com/trufflesecurity/trufflehog/blob/main/.github/community_note.md) before submitting ### TruffleHog Version ### Trace Output ``` 2024-02-04T17:35:52-05:00 error trufflehog error unarchiving chunk. {"source_manager_worker_id": "g9Nv6", "repo": "https://github.com/intel-cloud/cosbench.git", "commit": "380218a", "path": "0.3.1.0.zip", "timeout": 30,...

rgmz

Please review the [Community Note](https://github.com/trufflesecurity/trufflehog/blob/main/.github/community_note.md) before submitting ## Description We would like to be able to exclude specific secret values rather than entire files/folders. ### Preferred Solution add a --exclude-secrets...

jsimoni

Enumerate GitHub wikis concurrently

3

Please review the [Community Note](https://github.com/trufflesecurity/trufflehog/blob/main/.github/community_note.md) before submitting ## Description PR #2233 added the ability to scan GitHub wikis by default, as wikis are just repos and scanning them has no...

rgmz

added builtwith detector

1

### Description: Explain the purpose of the PR. ### Checklist: * [ ] Tests passing (`make test-community`)? * [ ] Lint passing (`make lint` this requires [golangci-lint](https://golangci-lint.run/usage/install/#local-installation))?

lonmarsDev

### Description: This PR adds the onfleet api key detector. https://docs.onfleet.com/reference/introduction  ### Checklist: * [ ] Tests passing (`make test-community`)? * [ ] Lint passing (`make lint` this requires...

ankushgoel27

Skip detectors for known bad chunks

4

### Description: This is a POC to fix #1517. Skipping detectors on chunks that are known to be problematic (e.g., #1460) should improve performance by reducing the number of false-positives...

rgmz