TruffleHog Buildkite Plugin

This plugin attempts to find secrets within the image using TruffleHog and annotates the build with either a list of files containing secrets or a confirmation that no secrets were found.

Example

Add the following to your pipeline.yml:

steps: 
  - plugins:
      - cultureamp/trufflehog#v1.0.0:
          trufflehog-image-uri: 'trufflesecurity/trufflehog:latest'
          image-uri: '123456789012.dkr.ecr.us-east-1.amazonaws.com/my-image:latest'

Configuration

`trufflehog-image-uri` (optional, string)

The Docker URI for the TruffleHog image.

`image-uri` (required, string)

The URI of the image to scan for secrets.

Developing

To run the tests:

docker-compose run --rm tests

Contributing

Fork the repository
Make the changes
Run the tests
Commit and push the changes
Create a pull request

Name		Name	Last commit message	Last commit date
Latest commit History 9 Commits
.github/workflows		.github/workflows
hooks		hooks
tests		tests
README.md		README.md
docker-compose.yml		docker-compose.yml
plugin.yml		plugin.yml

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

TruffleHog Buildkite Plugin

Example

Configuration

`trufflehog-image-uri` (optional, string)

`image-uri` (required, string)

Developing

Contributing

About

Releases

Packages

Contributors 2

Languages

cultureamp/trufflehog-buildkite-plugin

Folders and files

Latest commit

History

Repository files navigation

TruffleHog Buildkite Plugin

Example

Configuration

trufflehog-image-uri (optional, string)

image-uri (required, string)

Developing

Contributing

About

Topics

Resources

Stars

Watchers

Forks

Releases

Packages 0

Contributors 2

Languages

`trufflehog-image-uri` (optional, string)

`image-uri` (required, string)

Packages