On-premise verification
3 min
you can use custom verifiers to set the endpoints for enterprise or non publicly accessible instances this will allow trufflehog to verify secrets against those domains custom verifiers should be set at the root level of the config yaml file such that they apply globally custom verifiers can be configured in your config yaml file under the customverifiers field we currently support the following verifiers artifactory bitbucket confluence gitlab github hashicorp vault jira you can set the on premise servers in the local config or on command line example config each verifier can include one or more endpoints basic auth trufflehogaddress \<instance name> api c1 prod trufflehog org 8443 trufflehogscannergroup \<scanner group name> trufflehogscannertoken thog agent \<token> customverifiers \ name gitlab endpoints \ https //example gitlab com \ name gitlab endpoints \ https //example gitlab com \# jfrog artifactory (self hosted) — access token (akcp ) \ name artifactoryaccesstoken endpoints \ https //artifactory example com \# jfrog artifactory (self hosted) — reference token variant \ name artifactoryreferencetoken endpoints \ https //artifactory example com \# hashicorp vault — approle auth (role id + secret id) \ name hashicorpvaultauth endpoints \ https //vault example com \# jira data center — personal access token (on prem only, not jira cloud) \ name jiradatacenterpat endpoints \ https //jira example com \# confluence data center — personal access token (on prem only) \ name confluencedatacenter endpoints \ https //confluence example com \# bitbucket data center — personal access token (bbdc prefix, on prem only) \ name bitbucketdatacenter endpoints \ https //bitbucket example com customizing via command line you can also set custom verifiers via our open source trufflehog tool in the following example, we scan the currrent directory in our filesystem and pass in two custom verifier endpoints for github and one custom verifier endpoint for gitlab trufflehog filesystem verifier github=example1 github com,example2 github com verifier gitlab=example1 gitlab com
