Mirrors/trufflehog
2
0
Fork 0
mirror of https://github.com/trufflesecurity/trufflehog.git synced 2024-11-14 17:07:31 +00:00
Code Issues Projects Releases Packages Wiki Activity

make postman source public (#2635)

Browse source 
commit 1

c2
This commit is contained in:
Zachary Rice 2024-03-27 15:25:55 -05:00
parent 49bbf96983
commit b59b3bd7df
3 changed files with 15 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

14
README.md
View file

@ -42,6 +42,10 @@ Join the [Secret Scanning Discord](https://discord.gg/8Hzbrnkr7E)
docker run --rm -it -v "$PWD:/pwd" trufflesecurity/trufflehog:latest github --org=trufflesecurity docker run --rm -it -v "$PWD:/pwd" trufflesecurity/trufflehog:latest github --org=trufflesecurity
``` ```
# :floppy_disk: Installation # :floppy_disk: Installation
Several options available for you: Several options available for you:
@ -211,6 +215,14 @@ Set the `--since-commit` flag to your default branch that people merge into (ex:
trufflehog git file://. --since-commit main --branch feature-1 --only-verified --fail trufflehog git file://. --since-commit main --branch feature-1 --only-verified --fail
``` ```
## 12: Scan a Postman workspace
Use the `--workspace`, `--collection`, `--environment` flags multiple times to scan multiple targets.
```bash
trufflehog postman --token=<postman api token> --workspace=<workspace id>
```
# :question: FAQ # :question: FAQ
- All I see is `🐷🔑🐷 TruffleHog. Unearth your secrets. 🐷🔑🐷` and the program exits, what gives? - All I see is `🐷🔑🐷 TruffleHog. Unearth your secrets. 🐷🔑🐷` and the program exits, what gives?
@ -544,7 +556,7 @@ class Verifier(BaseHTTPRequestHandler):
self.log_message("%s", request) self.log_message("%s", request)
# check the match, you'll need to implement validateToken, which takes an array of ID's and Secrets # check the match, you'll need to implement validateToken, which takes an array of ID's and Secrets
if not validateTokens(request['HogTokenDetector']['hogID'], request['HogTokenDetector']['hogSecret']): if not validateTokens(request['HogTokenDetector']['hogID'], request['HogTokenDetector']['hogSecret']):
self.send_response(200) self.send_response(200)
self.end_headers() self.end_headers()
else: else:

2
main.go
View file

@ -155,7 +155,7 @@ var (
travisCiScanToken = travisCiScan.Flag("token", "TravisCI token. Can also be provided with environment variable").Envar("TRAVISCI_TOKEN").Required().String() travisCiScanToken = travisCiScan.Flag("token", "TravisCI token. Can also be provided with environment variable").Envar("TRAVISCI_TOKEN").Required().String()
// Postman is hidden for now until we get more feedback from the community. // Postman is hidden for now until we get more feedback from the community.
postmanScan = cli.Command("postman", "Scan Postman").Hidden() postmanScan = cli.Command("postman", "Scan Postman")
postmanToken = postmanScan.Flag("token", "Postman token. Can also be provided with environment variable").Envar("POSTMAN_TOKEN").String() postmanToken = postmanScan.Flag("token", "Postman token. Can also be provided with environment variable").Envar("POSTMAN_TOKEN").String()
postmanWorkspaces = postmanScan.Flag("workspace", "Postman workspace to scan. You can repeat this flag.").Strings() postmanWorkspaces = postmanScan.Flag("workspace", "Postman workspace to scan. You can repeat this flag.").Strings()
postmanCollections = postmanScan.Flag("collection", "Postman collection to scan. You can repeat this flag.").Strings() postmanCollections = postmanScan.Flag("collection", "Postman collection to scan. You can repeat this flag.").Strings()

2
pkg/sources/postman/postman.go
View file

@ -216,7 +216,7 @@ func (s *Source) Chunks(ctx context.Context, chunksChan chan *sources.Chunk, _ .
return nil return nil
} }
func (s *Source) scanLocalWorkspace(ctx context.Context, chunksChan chan *sources.Chunk, workspace Workspace, filePath string) { func (s *Source) scanLocalWorkspace(workspace Workspace, filePath string) {
// reset keywords for each workspace // reset keywords for each workspace
s.resetKeywords() s.resetKeywords()