Skip to content
This repository was archived by the owner on May 8, 2025. It is now read-only.

godaddy/tartufo-action

Use this GitHub action with your project
Add this Action to an existing workflow or create a new one
View on Marketplace
BranchesTags

Repository files navigation

tartufo-action

⚠️ DEPRECATED: This GitHub Action has been deprecated and archived. We recommend using alternative secret scanning solutions like GitHub's built-in secret scanning

This GitHub Action scans your repository for secrets using tartufo.

The target repository should be checked out before invoking this action. The tartufo.toml file in the checked out branch will be used as the configuration.

Inputs

entropy

Optional Enable entropy checks. Default "true".

regex

Optional Enable regex checks. Default "true".

scan-filenames

Optional Enable filename checks. Default "true".

output-format

Optional The format in which the output is generated. Default "text".

entropy-sensitivity

Optional Modify entropy detection sensitivity. Default "75".

branch

Optional Scan only the specified branch. By default, all branches in the repository are scanned.

include-submodule

Optional Scan git submodules. Default "false".

Example usage

uses: godaddy/tartufo-action@v1

About

Searches through git repositories for high entropy strings and secrets, digging deep into commit history

tartufo.readthedocs.io/

Topics

git security entropy actions secrets secrets-scan security-scanner security-tools github-actions

Resources

Readme

License

MIT license

Code of conduct

Code of conduct

Contributing

Contributing

Security policy

Security policy
Activity
Custom properties

Stars

9 stars

Watchers

6 watching

Forks

5 forks
Report repository

Releases 9

Version 4.1.0 Latest
Apr 4, 2023
+ 8 releases

Packages

No packages published

Contributors 9

Languages