trufflehog/action.yml
2022-04-08 14:52:36 -07:00

27 lines
606 B
YAML

name: 'TruffleHog OSS'
description: 'Scan Github Actions with TruffleHog'
author: Truffle Security Co. <support@trufflesec.com>
inputs:
path:
description: Repository path
required: true
base:
description: Start scanning from here (usually main branch).
required: true
head:
description: Scan commits until here (usually dev branch).
required: false
branding:
icon: "shield"
color: "green"
runs:
using: "docker"
image: "Dockerfile"
args:
- git
- file://${{ inputs.path }}
- --since-commit
- ${{ inputs.base }}
- --branch
- ${{ inputs.head }}