Docker

open source feature this feature is available in both trufflehog open source and trufflehog enterprise! configuration local configuration the docker integration supports using the following unauthenticated scans docker keychain (docker login) basic authentication bearer token if you provide images without a tag, then latest will be assumed no auth sources \ connection '@type' type googleapis com/sources docker images \ trufflesecurity/secrets unauthenticated {} name docker scanperiod 12h type source type docker verify true docker keychain auth sources \ connection '@type' type googleapis com/sources docker dockerkeychain true images \ trufflesecurity/secrets name docker scanperiod 12h type source type docker verify true basic auth sources \ connection '@type' type googleapis com/sources docker basicauth password xxxxxxxxxxxxxxxxxxxxxxxxxx username user images \ trufflesecurity/secrets name docker scanperiod 12h type source type docker verify true bearer token auth sources \ connection '@type' type googleapis com/sources docker bearertoken xxxxxxxx images \ trufflesecurity/secrets name docker scanperiod 12h type source type docker verify true capabilities true left unhandled content type center unhandled content type left unhandled content type center unhandled content type left unhandled content type center unhandled content type left unhandled content type center unhandled content type left unhandled content type center unhandled content type left unhandled content type center unhandled content type