2022-04-08 21:52:36 +00:00
|
|
|
name: 'TruffleHog OSS'
|
2022-04-08 21:33:55 +00:00
|
|
|
description: 'Scan Github Actions with TruffleHog'
|
|
|
|
author: Truffle Security Co. <support@trufflesec.com>
|
|
|
|
|
|
|
|
inputs:
|
|
|
|
path:
|
2023-02-03 16:05:21 +00:00
|
|
|
description: Repository path
|
2022-04-08 21:33:55 +00:00
|
|
|
required: true
|
|
|
|
base:
|
|
|
|
description: Start scanning from here (usually main branch).
|
2023-01-06 00:48:07 +00:00
|
|
|
required: false
|
|
|
|
default: ''
|
2022-04-08 21:33:55 +00:00
|
|
|
head:
|
|
|
|
description: Scan commits until here (usually dev branch).
|
|
|
|
required: false
|
2022-08-01 22:05:08 +00:00
|
|
|
extra_args:
|
|
|
|
default: ''
|
|
|
|
description: Extra args to be passed to the trufflehog cli.
|
|
|
|
required: false
|
2022-04-08 21:33:55 +00:00
|
|
|
branding:
|
|
|
|
icon: "shield"
|
|
|
|
color: "green"
|
|
|
|
runs:
|
|
|
|
using: "docker"
|
2023-02-03 16:05:21 +00:00
|
|
|
image: "docker://ghcr.io/trufflesecurity/trufflehog:latest"
|
2022-04-08 21:33:55 +00:00
|
|
|
args:
|
|
|
|
- git
|
|
|
|
- file://${{ inputs.path }}
|
|
|
|
- --since-commit
|
2023-01-10 00:09:58 +00:00
|
|
|
- ${{ inputs.base }}
|
2022-04-08 21:33:55 +00:00
|
|
|
- --branch
|
2022-04-08 21:52:36 +00:00
|
|
|
- ${{ inputs.head }}
|
2022-04-21 17:08:51 +00:00
|
|
|
- --fail
|
2022-10-31 16:34:33 +00:00
|
|
|
- --no-update
|
2023-03-28 21:50:45 +00:00
|
|
|
- --github-actions
|
2022-08-01 22:05:08 +00:00
|
|
|
- ${{ inputs.extra_args }}
|