mirror of
https://github.com/trufflesecurity/trufflehog.git
synced 2024-11-10 15:14:38 +00:00
80ed2df88f
The 'runs.image:' argument was using `Dockerfile`. This caused a Docker build of the trufflehog image every time someone used this action. I've changed the argument to use the already published Docker image. This will speed up the workflows considerably, since it pulls the image that is already built and available on GitHub's image storage.
28 lines
659 B
YAML
28 lines
659 B
YAML
name: 'TruffleHog OSS'
|
|
description: 'Scan Github Actions with TruffleHog'
|
|
author: Truffle Security Co. <support@trufflesec.com>
|
|
|
|
inputs:
|
|
path:
|
|
description: Repository path
|
|
required: true
|
|
base:
|
|
description: Start scanning from here (usually main branch).
|
|
required: true
|
|
head:
|
|
description: Scan commits until here (usually dev branch).
|
|
required: false
|
|
branding:
|
|
icon: "shield"
|
|
color: "green"
|
|
runs:
|
|
using: "docker"
|
|
image: "docker://ghcr.io/trufflesecurity/trufflehog:latest"
|
|
args:
|
|
- git
|
|
- file://${{ inputs.path }}
|
|
- --since-commit
|
|
- ${{ inputs.base }}
|
|
- --branch
|
|
- ${{ inputs.head }}
|
|
- --fail
|