2026 May

find more secrets expand discovery across more areas of the environment and add detection for additional secret types, ensuring no secrets slip through the cracks what's new ignore repos for public github scanning when scanning a public github organization, you can now exclude specific repositories from the scan this reduces noise from repos you don't need to monitor, such as forks or archived projects availability enterprise edition google drive scanning improvements google drive scans now handle large folder hierarchies more reliably a new folder based enumeration approach reduces memory pressure during scanning and resolves file paths more efficiently, preventing timeouts and incomplete scans for organizations with deeply nested drive structures availability enterprise edition aws appsync detector new detector for aws appsync api keys identifies exposed appsync credentials and verifies them against the aws api to confirm whether they grant access to your graphql endpoints availability enterprise and open source gitlab oauth detector new detector for gitlab oauth application credentials verifies tokens against the gitlab api and extracts application context for triage availability enterprise and open source spectralops personal api key detector new detector for spectralops personal api keys, expanding coverage to this security tooling platform availability enterprise and open source database credential context mongodb, postgresql, redis, and jdbc findings now include host, database name, and username directly in the finding metadata responders can immediately see which system a credential accesses without manually parsing connection strings availability enterprise and open source apk scanning improvements improved handling of obfuscated android apk files and apks with non standard resource types availability enterprise and open source duplicate secret line number fix fixed incorrect line numbers reported when the same secret appeared multiple times within a single file chunk findings now point to the correct source line for each occurrence availability enterprise and open source twilio deduplication fix fixed a match explosion in the twilio detector that could produce a large number of duplicate results, significantly reducing noise in twilio heavy environments availability enterprise and open source github repository redirect fix scanning no longer re fetches repository metadata for github repos that have been renamed or transferred repo info is now cached under the original url on redirect availability enterprise and open source aspx and entity encoded html support the html decoder now handles aspx pages and entity encoded html content availability enterprise and open source improve response features here help teams act faster and more effectively when secrets are found, streamlining investigation, triage, and collaboration what's new additional triage states you can now classify findings with four additional triage states, giving security teams finer grained control over remediation workflows the new states — in review (actively investigating validity, ownership, and scope), notified (responsible party informed, remediation pending), in progress (rotation, revocation, or removal underway), and exception (risk formally accepted with owner and review date tracking) — sit alongside the existing four to reflect each stage of the remediation lifecycle availability enterprise edition multi analyzer credential analysis credential analysis now runs multiple analyzers per finding where applicable for example, a bitbucket credential is analyzed by both the bitbucket and atlassian analyzers, and a mysql credential by both the mysql and jdbc analyzers this means richer context about what a credential can access, without any additional configuration availability enterprise edition analyze tab as default view when credential analysis data is available for a secret, the detail page now opens directly to the analyze tab this puts the most actionable information — what the credential can access and its risk profile — front and center, saving a click on every investigation availability enterprise edition secret reverification you can now reverify stored secrets on demand, across any integrated source, to confirm whether a previously detected credential is still active, even if the original source (repo, slack message, confluence page, jenkins log) has been deleted trigger reverification from the secret details page or programmatically via the new async post/secret reverification endpoint availability enterprise edition (private preview) ease administration features here simplify ongoing management of the trufflehog platform, including security hardening, performance improvements, and ui enhancements what's new configurable liveness probe timeout (helm) the trufflehog helm chart (0 5 0) now lets you customize the liveness probe timeout, useful for deployments where scanner startup takes longer than the default threshold set it via the chart values to match your environment availability enterprise edition smarter notification creation newly created notification sinks now only fire for secrets discovered after the sink was set up previously, a new notifier could trigger alerts for historical findings, creating unnecessary noise during onboarding availability enterprise edition faster dashboard loading the summary dashboard now loads significantly faster by reading from an optimized data path large deployments with many secrets should see noticeably reduced page load times availability enterprise edition location filter fix fixed an issue where filtering secrets by location name used substring matching instead of exact match for example, selecting "acme" would also return secrets from "acme foo " filters now match exactly what you select availability enterprise edition jira notifier fix resolved an issue where jira notification sinks could fail with "unsupported notifier type" errors, preventing ticket creation for new findings jira and test notifier types are now fully supported in the notification pipeline availability enterprise edition email notifier fix fixed an issue where email notifications configured via ses were not including recipients, causing notifications to silently fail to deliver availability enterprise edition github app name fix fixed 404 errors that occurred when a github app's name contained spaces, which prevented the integration from completing api calls availability enterprise edition security session and cookie hardening strengthened session security by enforcing https only cookies, setting httponly and samesite attributes on session cookies, and adding cache control no store headers to all api responses to prevent sensitive data from being cached to disk availability enterprise edition dependency vulnerability patches updated vulnerable frontend, backend, and go dependencies across the platform availability enterprise edition infrastructure & reliability secret ingestion throughput fix resolved a regression that throttled secret ingestion to a fraction of its intended capacity throughput is restored to normal levels, eliminating processing backlogs during large scans availability enterprise edition smarter circuit breaker the secret ingestion circuit breaker now distinguishes between normal scan spikes and sustained overload, reducing false positive load shedding during healthy scan activity availability enterprise edition duplicate task prevention the platform now prevents the same scan task from being dispatched to multiple scanners simultaneously, eliminating redundant work caused by retry races availability enterprise edition