The Docker integration supports using the following:

If you provide images without a tag, then latest will be assumed.

Learn about the local configuration options for Docker integration. Discover how to enable unauthenticated scans, Docker keychain authentication, basic authentication, and bearer token authentication. Explore YAML code examples.

Confluence

Docker

source

Filesystem

TruffleHog Docs

Choose your adventure

Creating a scanner

Configuring a scanner

Resource Requirements

Secrets management

Running the scanner

Terminology

Getting started

Artifactory

AWS S3

Azure Repos

Bitbucket

Buildkite

CircleCI

Gerrit

GitLab

GitHub

Google Cloud Storage (GCS)

Google Drive

Jenkins

Jira

Microsoft Sharepoint

Microsoft Teams

Slack

Vector

Scan data for secrets

Email

Splunk

Stdout

Webhook

Notify results

Reverify secrets

Scanning in CI

Pre-commit hooks

Pre-receive hooks

Block secrets from leaking

Systemd

Helm Chart

Kubernetes manifest

Deployment

Configuration file reference

Custom detectors

Customizing detection

On-premise verification

Customizing TruffleHog

Authentication

Architecture

Compliance

Security and Compliance

Feature	Supported
Scan archive files	✅
Scan base64 encoded data	✅
Scan binaries	✅
Enumeration of images	❌
Image architectures supported	linux/amd64

Docker

Configuration

Local configuration

Capabilities