Git

open source feature this feature is available in both trufflehog open source and trufflehog enterprise! configuration web configuration you can configure this integration via the web ui through the integrations tab or you can use a local configuration file as outlined below source integration to https //git scm com/ , the version control system local configuration basic auth sources \ connection '@type' type googleapis com/sources git basicauth password clonepassword username cloneuser excludepathsfile /home/me/dev/exclude txt includepathsfile /home/me/dev/include txt repositories \ https //github com/dustin decker/secretsandstuff git skipbinaries true name git scanperiod 12h type source type git verify true ssh auth sources \ connection '@type' type googleapis com/sources git \# ssh auth uses keys from your keychain sshauth {} excludepathsfile /home/me/dev/exclude txt includepathsfile /home/me/dev/include txt repositories \ ssh //github com/dustin decker/secretsandstuff git skipbinaries true name git scanperiod 12h type source type git verify true unauthenticated sources \ connection '@type' type googleapis com/sources git unauthenticated {} directories \ /home/me/dev/vscode excludepathsfile /home/me/dev/exclude txt includepathsfile /home/me/dev/include txt repositories \ https //github com/dustin decker/secretsandstuff git skipbinaries true name git scanperiod 12h type source type git verify true options true 220,220,222left unhandled content type left unhandled content type left unhandled content type left unhandled content type left unhandled content type left unhandled content type left unhandled content type left unhandled content type left unhandled content type left unhandled content type left unhandled content type left unhandled content type left unhandled content type left unhandled content type left unhandled content type left unhandled content type left unhandled content type left unhandled content type left unhandled content type left unhandled content type left unhandled content type left unhandled content type left unhandled content type left unhandled content type left unhandled content type left unhandled content type left unhandled content type left unhandled content type left unhandled content type left unhandled content type left unhandled content type left unhandled content type left unhandled content type left unhandled content type left unhandled content type left unhandled content type capabilities true 331,331left unhandled content type center unhandled content type left unhandled content type center unhandled content type left unhandled content type center unhandled content type left unhandled content type center unhandled content type left unhandled content type center unhandled content type left unhandled content type center unhandled content type left unhandled content type center unhandled content type left unhandled content type center unhandled content type left unhandled content type center unhandled content type notes trufflehog does not scan diffs greater than 1 gb there is presently a known issue where, when you attempt to clone multiple refs that cannot coexist on disk at the same time, an error is thrown here is an anonymized example of this error thrown in github (it would look similar in git) could not clone repo https //git xxxxx com/xxxxx/thog git, error executing git clone exit status 128, fatal cannot process 'refs/remotes/origin/release/21 22/test' and 'refs/remotes/origin/release/21 22' at the same time this occurs with certain ref configurations that are uncommon in repositories but do occasionally exist when this error is thrown, the affected repo is skipped and the next repo begins scanning workarounds exist that can attempt to scan the repos that throw this error, but they have two potential limitations they may not be able to scan the entire repo they may require a manual step to run the scan if you would like assistance establishing a workaround, please open a bug report here https //trufflesecurity atlassian net/servicedesk/customer/portal/1/group/1/create/6