Mirrors/trufflehog
2
0
Fork 0
mirror of https://github.com/trufflesecurity/trufflehog.git synced 2024-11-10 15:14:38 +00:00
Code Issues Projects Releases Packages Wiki Activity
trufflehog/pkg/engine/docker.go
ahrav 6df147de58
[feat] - Support bearer auth for docker scans (#2848) 
* Support bearer auth for docker scans

* updates

* use no auth by default if no other auth method is provided
2024-05-14 11:30:11 -07:00

44 lines
1.4 KiB
Go
Raw Blame History

package engine
import (
"runtime"
"google.golang.org/protobuf/proto"
"google.golang.org/protobuf/types/known/anypb"
"github.com/trufflesecurity/trufflehog/v3/pkg/context"
"github.com/trufflesecurity/trufflehog/v3/pkg/pb/sourcespb"
"github.com/trufflesecurity/trufflehog/v3/pkg/sources"
"github.com/trufflesecurity/trufflehog/v3/pkg/sources/docker"
)
// ScanDocker scans a given docker connection.
func (e *Engine) ScanDocker(ctx context.Context, c sources.DockerConfig) error {
connection := &sourcespb.Docker{Images: c.Images}
switch {
case c.UseDockerKeychain:
connection.Credential = &sourcespb.Docker_DockerKeychain{DockerKeychain: true}
case len(c.BearerToken) > 0:
connection.Credential = &sourcespb.Docker_BearerToken{BearerToken: c.BearerToken}
default:
connection.Credential = &sourcespb.Docker_Unauthenticated{}
}
var conn anypb.Any
err := anypb.MarshalFrom(&conn, connection, proto.MarshalOptions{})
if err != nil {
ctx.Logger().Error(err, "failed to marshal gitlab connection")
return err
}
sourceName := "trufflehog - docker"
sourceID, jobID, _ := e.sourceManager.GetIDs(ctx, sourceName, docker.SourceType)
dockerSource := &docker.Source{}
if err := dockerSource.Init(ctx, sourceName, jobID, sourceID, true, &conn, runtime.NumCPU()); err != nil {
return err
}
_, err = e.sourceManager.Run(ctx, sourceName, dockerSource)
return err
}
Reference in a new issue View git blame Copy permalink