search

trufflesecurity / trufflehog

Find and verify secrets
https://trufflesecurity.com
GNU Affero General Public License v3.0
14.39k stars 1.57k forks source link

CircleCI Projects API Endpoints Error #3009

Open brendan-wiz opened 1 week ago

brendan-wiz commented 1 week ago

TruffleHog Version

3.78.2

Trace Output

2024-06-24T10:15:28-04:00 info-3 trufflehog engine started {"workers": 11} 2024-06-24T10:15:28-04:00 info-4 trufflehog default engine options set 2024-06-24T10:15:28-04:00 info-4 trufflehog engine initialized 2024-06-24T10:15:28-04:00 info-4 trufflehog setting up aho-corasick core 2024-06-24T10:15:28-04:00 info-4 trufflehog set up aho-corasick core 2024-06-24T10:15:28-04:00 info-2 trufflehog starting scanner workers {"count": 11} 2024-06-24T10:15:28-04:00 info-2 trufflehog starting detector workers {"count": 550} 2024-06-24T10:15:28-04:00 info-2 trufflehog starting verificationOverlap workers {"count": 11} 2024-06-24T10:15:28-04:00 info-2 trufflehog starting notifier workers {"count": 2} 2024-06-24T10:15:28-04:00 info-0 trufflehog running source {"source_manager_worker_id": "fCKOr", "with_units": false, "target_count": 0, "source_manager_units_configurable": true} 2024-06-24T10:15:47-04:00 info-4 trufflehog finished scanning chunks {"scanner_worker_id": "3KJcS"} 2024-06-24T10:15:47-04:00 info-4 trufflehog finished scanning chunks {"scanner_worker_id": "euLrU"} 2024-06-24T10:15:47-04:00 info-4 trufflehog finished scanning chunks {"scanner_worker_id": "xaF12"} 2024-06-24T10:15:47-04:00 info-4 trufflehog finished scanning chunks {"scanner_worker_id": "1FSns"} 2024-06-24T10:15:47-04:00 info-4 trufflehog finished scanning chunks {"scanner_worker_id": "UUJkO"} 2024-06-24T10:15:47-04:00 info-4 trufflehog finished scanning chunks {"scanner_worker_id": "TIUPh"} 2024-06-24T10:15:47-04:00 info-4 trufflehog finished scanning chunks {"scanner_worker_id": "JTiw9"} 2024-06-24T10:15:47-04:00 info-4 trufflehog finished scanning chunks {"scanner_worker_id": "5qe6Z"} 2024-06-24T10:15:47-04:00 info-4 trufflehog finished scanning chunks {"scanner_worker_id": "Sju9s"} 2024-06-24T10:15:47-04:00 info-4 trufflehog finished scanning chunks {"scanner_worker_id": "MMyaC"} 2024-06-24T10:15:47-04:00 info-4 trufflehog finished scanning chunks {"scanner_worker_id": "hKjNs"} 2024-06-24T10:15:47-04:00 error trufflehog error running scan {"error": "engine failed to finish execution: fatal: error getting projects: Get \"https://circleci.com/api/v1.1/projects\": GET https://circleci.com/api/v1.1/projects giving up after 4 attempt(s): Get \"https://circleci.com/api/v1.1/projects\": net/http: request canceled (Client.Timeout exceeded while awaiting headers)"}

Expected Behavior

Should have ran the scan.

Actual Behavior

Errored out attempting to list out the projects.

Steps to Reproduce

  1. Obtain CircleCI PAT
  2. Have full org_owner in GH (Our permissions are inherited from GH)
  3. run trufflehog with the circleci --token=CCIPAT_xxx

Environment