trufflehog

command

v0.1.0 Latest Latest Go to latest Published: Jan 5, 2024 License: MIT Imports: 8 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/scan-io-git/scan-io

Links

Open Source Insights

README ¶

Trufflehog Plugin

The main function of the plugin is to present a top-level interface for a Trufflehog scanner.

This page is a short plugin description.
You may find additional information in a scanio-analyse article.

Trufflehog command

By defaul a plugin use this command:
trufflehog + <AdditionalArgs> + [--config <ConfigPath>] + [--<ReportFormat>] + --no-verification + filesystem + <RepoPath>

Where:

AdditionalArgs is additional arguments in scanio analyse command after --.
ConfigPath is a path to a custom config. Will be applied if you use --config or -c in scanio analyse command.
ReportFormat is a non-default format of a report. trufflehog supports only json. Will be applied if you use --format or -f.
--no-verification it means that all found secrets will not be validated by using external systems.
filesystem is a command in terms of Trufflehog. It means the scanner will be searching secrets on a local file system.
RepoPath is a local path to a file or a folder with code.

Installing Dependencies

If you build the Scanio code using Docker or pull a pre-built container, you do not need to separately install the Trufflehog dependencies. However, if you build the Scanio code to a binary, you will need to install Trufflehog before using the application. You can refer to the Trufflehog documentation for more information.

Commands

Analysing using trufflehog with an input file argument.
scanio analyse --scanner trufflehog --input-file /Users/root/.scanio/output.file --format json -j 2
Analysing using trufflehog with a specific path .
scanio analyse --scanner trufflehog --format json -j 1 /tmp/my_project
Analysing using trufflehog with an input file and custom rules.
scanio analyse --scanner trufflehog --config /Users/root/scan-io-trufflehog-rules --input-file /Users/root/.scanio/output.file --format json -j 2
Analysing using trufflehog with an input file and additional arguments.
scanio analyse --scanner trufflehog --input-file /Users/root/.scanio/output.file --format json -- --debug

Results of the Command

If you use an input file argument the command will save results into a home directory: ~/.scanio/results/+<VCSURL>+<Namespace>+<repo_name>/<scanner_name>.<report_format>.

If you use a specific path argument the command will save results into the same directory:

scanio analyse --scanner <scanner_name> --format <report_format> /tmp/my_project
Result path - /tmp/my_project/<scanner_name>.<report_format>r>

Documentation ¶

There is no documentation for this package.

Source Files ¶

View all Source files

trufflehog.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL