Scan data for secrets

Artifactory

6min
ο»Ώ
ο»Ώ

Source integration to JFrog Artifactory.

Configuration options

To create an access token for a user with read-only permissions, create a new user in the JFrog Artifactory UI under "Identity and Access."

Leave all roles unchecked and ensure the user is added to the readers group (selected by default).

Once created, navigate to the "Access Tokens" tab and generate a token for the newly created user.

ο»Ώ

Local configuration

It is recommended to generate an access token for a user with read-only permissions. To do so, create a new user in the JFrog Artifactory UI under β€œIdentity and Access.” Leave all roles unchecked and ensure the user is added to the readers group (selected by default). Once created, navigate to the β€œAccess Tokens” tab and generate a token for the newly created user.

Access token
Basic auth
ο»Ώ

Key

Description

Required

endpoint

The URL for your Artifactory instance.

Yes

repositories

List of Artifactory repositories to scan. Omit to enumerate instead.

No

includePaths

List of artifact paths to include in scans. Supports globbing.

No

ignorePaths

List of artifact paths to ignore in scans. Supports globbing.

No

include_paths and ignore_paths interact as follows:

  • If only an includePaths is provided, then TruffleHog will only scan artifacts that match it.
  • If only an ignorePaths is provided, then TruffleHog will scan all artifacts that do not match it.
  • If both includePaths and ignorePaths are provided, then TruffleHog will scan only artifacts that match the include list but not the ignore list.

Capabilities

Feature

Supported

Scan archive files

βœ…

Scan base64 encoded data

βœ…

Scan binaries

βœ…

Auto resume

βœ…

Include filter

βœ…

Exclude filter

βœ…

ο»Ώ