Docker

open source feature this feature is available in both trufflehog open source and trufflehog enterprise! configuration local configuration the docker integration supports using the following unauthenticated scans docker keychain (docker login) basic authentication bearer token if you provide images without a tag, then latest will be assumed no auth sources \ connection '@type' type googleapis com/sources docker images \ trufflesecurity/secrets unauthenticated {} name docker scanperiod 12h type source type docker verify true docker keychain auth sources \ connection '@type' type googleapis com/sources docker dockerkeychain true images \ trufflesecurity/secrets name docker scanperiod 12h type source type docker verify true basic auth sources \ connection '@type' type googleapis com/sources docker basicauth password xxxxxxxxxxxxxxxxxxxxxxxxxx username user images \ trufflesecurity/secrets name docker scanperiod 12h type source type docker verify true bearer token auth sources \ connection '@type' type googleapis com/sources docker bearertoken xxxxxxxx images \ trufflesecurity/secrets name docker scanperiod 12h type source type docker verify true capabilities feature supported scan archive files ✅ scan base64 encoded data ✅ scan binaries ✅ enumeration of images ❌ image architectures supported linux/amd64