Kubernetes Manifest
1 min
deploying to kubernetes via manifest the following instructions will help you setup a basic deployment of the trufflehog scanner in kubernetes via manifest for kubernetes we recommend using the helm chart docid\ trougzoqv1uvzreszg4vh instead if possible the helm chart makes it easier to customize the deployment and also includes options like a verticalpodautoscaler to right size the resource requests for the deployment kubernetes will ensure that trufflehog stays running, manage your configuration secrets, and collect the logs create the namespace $ kubectl create namespace trufflehog namespace/trufflehog created create the configuration secret important the config file must be named config yaml for the field name in the secret to be correctly named and match what the deployment is looking for $ kubectl create secret namespace trufflehog generic from file config yaml config secret/config created create the deployment yaml file apiversion apps/v1 kind deployment metadata name trufflehog labels app trufflehog spec replicas 1 selector matchlabels app trufflehog template metadata labels app trufflehog spec volumes \ name config secret volume secret secretname config containers \ name trufflehog image us docker pkg dev/thog artifacts/public/scanner\ latest terminationmessagepolicy fallbacktologsonerror command \["/usr/local/bin/scanner", "scan", " config=/secret/config yaml", " port=8080"] livenessprobe httpget path /healthz port 8080 initialdelayseconds 3 periodseconds 3 volumemounts \ name config secret volume mountpath /secret/ apply the manifest $ kubectl apply f /tmp/thog yaml namespace trufflehog deployment apps/trufflehog configured wait for trufflehog to be running $ kubectl get pods namespace trufflehog watch name ready status restarts age trufflehog 7f76dc4c49 szxwv 1/1 running 0 0m22s follow the logs $ kubectl logs namespace trufflehog f l app=trufflehog š·šš· trufflehog unearth your secrets š·šš· version v1 50 22 info\[0000] starting scanner service client scanner group=on prem
