Vector

scan vector logs using the vector http sink enterprise feature this feature is only available with trufflehog enterprise contact us to learn more alpha feature alpha features are in active development they may contain bugs configuration web configuration vector scanning is only available for local, on prem scanners right now local configuration trufflehog source configuration access token sources \ connection '@type' type googleapis com/sources webhook listenaddress " 8080" header key authorization \# note that you must prefix your secret \# value with 'bearer ' as shown value "bearer your secret value" name vector logs scanperiod 12h type source type webhook verify true vector http sink configuration if present, the following fields will show up as metadata in the trufflehog dashboard host , hostname , timestamp , source type we recommend running trufflehog in a way where you can have autoscaling replicas to scale out as needed to handle your log volume for example, in k8s, you would use a deployment, service, and horizontalpodautoscaler with a cpu target of 75% to autoscale the deployment as needed see https //vector dev/docs/reference/configuration/sinks/http/ https //vector dev/docs/reference/configuration/sinks/http/ for more vector http sink configuration options access token sinks webhook type http inputs \ "in" \# customize the uri to point to whatever host\ port \# you are running trufflehog on uri http //localhost 8080/v1/vector method "post" encoding codec "json" auth strategy "bearer" token "your secret value" capabilities feature supported scan build logs ✅ scan base64 encoded data ✅ block logs with credentials ❌ real time scanning ✅