tartufo-action

This GitHub Action scans your repository for secrets using tartufo.

The target repository should be checked out before invoking this action. The tartufo.toml file in the checked out branch will be used as the configuration.

Inputs

`entropy`

Optional Enable entropy checks. Default "true".

`regex`

Optional Enable regex checks. Default "true".

`scan-filenames`

Optional Enable filename checks. Default "true".

`output-format`

Optional The format in which the output is generated. Default "text".

`entropy-sensitivity`

Optional Modify entropy detection sensitivity. Default "75".

`branch`

Optional Scan only the specified branch. By default, all branches in the repository are scanned.

`include-submodule`

Optional Scan git submodules. Default "false".

Example usage

uses: godaddy/tartufo-action@v1

Name		Name	Last commit message	Last commit date
Latest commit History 36 Commits
.github		.github
docs		docs
.gitattributes		.gitattributes
.pre-commit-config.yaml		.pre-commit-config.yaml
CHANGELOG.md		CHANGELOG.md
CODE_OF_CONDUCT.md		CODE_OF_CONDUCT.md
CONTRIBUTING.md		CONTRIBUTING.md
Dockerfile		Dockerfile
LICENSE		LICENSE
README.md		README.md
action.yml		action.yml
entrypoint.py		entrypoint.py
poetry.lock		poetry.lock
pyproject.toml		pyproject.toml
renovate.json		renovate.json

License

godaddy/tartufo-action

Folders and files

Latest commit

History

Repository files navigation

tartufo-action

Inputs

entropy

regex

scan-filenames

output-format

entropy-sensitivity

branch

include-submodule

Example usage

About

Topics

Resources

License

Code of conduct

Security policy

Stars

Watchers

Forks

Languages