Artifactory
Source integration to JFrog Artifactory.
To create an access token for a user with read-only permissions, create a new user in the JFrog Artifactory UI under "Identity and Access."
Leave all roles unchecked and ensure the user is added to the readers group (selected by default).
Once created, navigate to the "Access Tokens" tab and generate a token for the newly created user.
It is recommended to generate an access token for a user with read-only permissions. To do so, create a new user in the JFrog Artifactory UI under “Identity and Access.” Leave all roles unchecked and ensure the user is added to the readers group (selected by default). Once created, navigate to the “Access Tokens” tab and generate a token for the newly created user.
Key | Description | Required |
|---|---|---|
endpoint | The URL for your Artifactory instance. | Yes |
repositories | List of Artifactory repositories to scan. Omit to enumerate instead. | No |
includePaths | List of artifact paths to include in scans. Supports globbing. | No |
ignorePaths | List of artifact paths to ignore in scans. Supports globbing. | No |
include_paths and ignore_paths interact as follows:
- If only an includePaths is provided, then TruffleHog will only scan artifacts that match it.
- If only an ignorePaths is provided, then TruffleHog will scan all artifacts that do not match it.
- If both includePaths and ignorePaths are provided, then TruffleHog will scan only artifacts that match the include list but not the ignore list.
Feature | Supported |
|---|---|
Scan archive files | ✅ |
Scan base64 encoded data | ✅ |
Scan binaries | ✅ |
Auto resume | ✅ |
Include filter | ✅ |
Exclude filter | ✅ |
