Google Drive

google drive edition enterprise only the google drive integration scans files and comments in a google drive account for credentials and other sensitive data configuration the google drive integration is configured in trufflehog under integrations local configuration is not available for this source each integration scans a single google drive account to scan multiple accounts, create a separate integration for each one (multi account scanning from a single integration is on the roadmap ) web configuration configure this integration from the integrations page in trufflehog click add integration > source > google drive , then sign in with the google account you want to scan and grant trufflehog the https //www googleapis com/auth/drive readonly permission this scope allows trufflehog to list files available in the google drive account download files for in memory scanning no file content is stored see the names and emails of individuals associated with files, used to attribute findings the integration scans files accessible to the authorizing account — files owned by the account, plus files shared with the account that have viewers and commenters can see the option to download, print, and copy enabled (the default) after granting permissions, you'll return to the configuration screen to name the integration and set the scan interval (12 hours by default) unverified app warning if your google workspace administrator has not allowlisted trufflehog's app, you'll see a "google hasn't verified this app" screen during sign in to proceed, click advanced > go to trufflehog org (unsafe) and continue to the permissions screen if you're an administrator, see allowlisting the trufflehog app below to skip this warning for users in your organization allowlisting the trufflehog app (admin) allowlisting is optional but recommended for organization wide deployments the user must have run through the unverified app flow at least once for the app to appear in the admin console step 1 open api controls in the google admin console in the google admin console, navigate to security > access and data control > api controls step 2 open third party app access click manage third party app access step 3 find the trufflehog app if the app has been used at least once while unverified, it appears in the list with access set to not configured if it isn't visible, check view list under accessed apps step 4 change access for the trufflehog app check the box next to the trufflehog app and click change access under scope , click include organizational units and select the organizational units you want to allowlist the app for click select under access to google data , select trusted and click next step 5 confirm the change review the changes and click change access users in the selected organizational units will no longer see the unverified app warning when setting up the google drive integration capabilities feature supported scan files ✅ scan comments ✅ scan archive files ✅ scan attachments ✅ scan base64 encoded data ✅ scan binaries ✅ scan microsoft office files ✅ scan files in trash ✅ auto resume ✅ notes files larger than 1 gb are not scanned the integration scans only files the authorizing user has access to, including shared files drafts are not scanned for organization wide scanning across multiple users, see google drive domain wide delegation (dwd) docid\ zcrx ywwel5eamfnynqif instead