trufflehog/action.yml

37 lines
862 B
YAML
Raw Normal View History

2022-04-08 21:52:36 +00:00
name: 'TruffleHog OSS'
2022-04-08 21:33:55 +00:00
description: 'Scan Github Actions with TruffleHog'
author: Truffle Security Co. <support@trufflesec.com>
inputs:
path:
description: Repository path
2022-04-08 21:33:55 +00:00
required: true
base:
description: Start scanning from here (usually main branch).
required: false
default: ''
2022-04-08 21:33:55 +00:00
head:
description: Scan commits until here (usually dev branch).
required: false
extra_args:
default: ''
description: Extra args to be passed to the trufflehog cli.
required: false
2022-04-08 21:33:55 +00:00
branding:
icon: "shield"
color: "green"
runs:
using: "docker"
image: "docker://ghcr.io/trufflesecurity/trufflehog:latest"
2022-04-08 21:33:55 +00:00
args:
- git
- file://${{ inputs.path }}
- --since-commit
- ${{ inputs.base }}
2022-04-08 21:33:55 +00:00
- --branch
2022-04-08 21:52:36 +00:00
- ${{ inputs.head }}
- --fail
- --no-update
- --github-actions
- ${{ inputs.extra_args }}