Trufflehog - Exclude files

coinbase / salus

We would like to request that all contributors please clone a *fresh copy* of this repository since the September 21st maintenance.

23 stars 1 forks source link

Trufflehog - Exclude files #830

Open maitrayshah-cb opened 1 year ago

maitrayshah-cb commented 1 year ago

Support excluding files for Trufflehog Scanner.

scanner_configs:
  Trufflehog:
    exclude_files: # List of file paths to ignore
      - env.json 
      - secrets.txt
    only-verified: false  # Only output verified results.
                          # true by default
    exceptions:  # whitelist finding
      - advisory_id: FlatIO-PLAIN
        changed_by: security-team
        notes: My notes.
        expiration: 2022-12-31

joshuaostrom-cb commented 1 year ago

What's the backstory? When are users needing to allow artifacts with valid credentials?

charleneaid commented 1 year ago

Use case are test files and documentation files.

cb-heimdall commented 1 year ago

This Pull Request was merged without enough reviews Please go here to review and +1