Skip to content
play

GitHub Action

Tartufo Scan

4.1.0 Latest version

Tartufo Scan

play

Tartufo Scan

Runs scan-local-repo with default options

Installation

Copy and paste the following snippet into your .yml file.

 
              
- name: Tartufo Scan

              
  uses: godaddy/[email protected]
Learn more about this action in godaddy/tartufo-action

Choose a version

tartufo-action

This GitHub Action scans your repository for secrets using tartufo.

The target repository should be checked out before invoking this action. The tartufo.toml file in the checked out branch will be used as the configuration.

Inputs

entropy

Optional Enable entropy checks. Default "true".

regex

Optional Enable regex checks. Default "true".

scan-filenames

Optional Enable filename checks. Default "true".

output-format

Optional The format in which the output is generated. Default "text".

entropy-sensitivity

Optional Modify entropy detection sensitivity. Default "75".

branch

Optional Scan only the specified branch. By default, all branches in the repository are scanned.

include-submodule

Optional Scan git submodules. Default "false".

Example usage

uses: godaddy/tartufo-action@v1