TruffleHog Release Notes
2026 January
3 min
improve response improve investigation and triage to make discovered secrets easier to act on whatβs new persistent saved filters added persistent, shareable saved filters that remain across sessions for streamlined workflows cloud credential rotation api support added external api support for rotating cloud credentials to streamline remediation workflows slack notifier re authentication flow new streamlined re authentication and save flow for slack notifiers when slack credentials expire or permissions change, users can now easily re authenticate without recreating the entire notifier configuration improved notification list visibility updated notification list views to properly display heartbeat notifications for clearer channel health visibility secrets details page update added a βdate revokedβ field to provide visibility into when credentials were revoked active scans page enhancements multiple improvements to the active scans page added timestamps to track when scans started fixed visual alignment on scanner status messages fixed visual flickering during polling stop progress bar animation when scans are finished added pending badge to source integration health status show "view source" link instead of "pending" for failed scans only call job report endpoints when tab is selected (performance improvement) saml metadata validation added comprehensive validation to prevent authentication loops and misconfiguration issues the system now validates saml configurations before accepting them, reducing authentication failures saml nameid format configuration added support for configuring saml nameid format, improving compatibility with various identity providers find more secrets expand discovery across more areas of the environment and add detection for additional secret types, ensuring no secrets slip through the cracks whatβs new github real time commit metadata scanning enhanced github integration now scans commit metadata in real time, providing faster detection of secrets in commit messages, author information, and commit metadata this ensures comprehensive coverage beyond just file contents only available for on prem scanners improved line number accuracy in large files fixed line number reporting for chunked file scans, enabling accurate secret location in large files resulting in a faster and more precise remediation repository naming support improved github scanning to correctly handle repositories with trailing hyphens, ensuring consistent scanning across all repository naming conventions git locale compatibility improvements enhanced git integration using iso strict formatting to prevent locale specific scan inconsistencies gerrit source resumption added resumption support for gerrit scanning to reliably continue interrupted scans, ensuring reliable scanning of large gerrit repositories without starting from scratch github source improvements restored the includerepos configuration option for github sources, giving you more granular control over which repositories to scan s3 source reliability improvements fixed a critical βindex out of rangeβ error to improve stability when scanning large s3 buckets improved gitlab enumeration enhanced gitlab enumeration for better performance and resilience in large environments google oauth reliability improvements fixed shared secret location handling for google oauth logins
