-
When running trufflehog on a local repo, I get the same output whether or not the path exists:
### Output for nonexistent path:
```
$ trufflehog --debug git file:///tmp/nonexistent.git
2024/08…
-
Hello, I can't scan a private image that is stored in ghcr.io.
I've verified the credentials.
Here is the pipeline:
```yaml
name: Deploy to dev env
on:
push:
branches: ["dev"]
…
-
- use unit-of-work/transactional db
- add tests
- support Documenso
### Tickets
Make sure secrets are unique, or pass the ticket id in the qrcode
### Features
Allow to see what people hav…
-
From https://github.com/Yelp/detect-secrets/pull/52, we're able to do:
```
$ detect-secrets scan --string '012345678a'
```
but what happens if the string two or more secrets? e.g.
```
$ de…
-
Please review the [Community Note](https://github.com/trufflesecurity/trufflehog/blob/main/.github/community_note.md) before submitting
### TruffleHog Version
v3.63.7 and later
### Trace Output…
-
When trying to scan a git repository checked out using `git clone --mirror`, detect-secrets fails with an error:
```fatal: this operation must be run in a work tree```
To duplicate, try the foll…
-
**Describe the issue**
An incorrect result is being generated for the "Base64 High Entropy String" scan. Checkov is expecting different names for the resource names, such as Keyvault resource group n…
-
### Task Topic
Other
### Task Description
Configure repository security and analysis using GitHub Secuirty Settings
## Tasks
- [ ] Private vulnerability reporting
- [ ] Dependency graph
- […
-
### Duplicates
- [X] I have searched the existing issues
### Summary 💡
Need to put in place SonarCloud project so that use it in our pipelines
Free for all open-source projects as stated in…
-
Hello!
_I would like to thanks all team for work on Banan Split at first_
My proposal\qestion is: Can it possible to introduce inside Banana Split (or side project) something i found out recent…
iuvi7 updated
1 month ago