Trufflehog

.automation/generated/linter-links-previews.json

@@ -544,6 +544,11 @@
     "image": null,
     "title": "Redirecting"
   },
+  "trufflehog": {
+    "description": "A vulnerability scanner for container images and filesystems - GitHub - anchore/grype: A vulnerability scanner for container images and filesystems",
+    "image": "https://repository-images.githubusercontent.com/267054247/c41d4c8f-cd32-4bdd-9f2a-89a82992a359",
+    "title": "GitHub - anchore/grype: A vulnerability scanner for container images and filesystems"
+  },
   "ts-standard": {
     "description": "English \u2022 Espan\u0303ol (Latinoame\u0301rica) \u2022 Franc\u0327ais \u2022 Bahasa Indonesia \u2022 Italiano (Italian) \u2022 \u65e5\u672c\u8a9e (Japanese) \u2022 \u1112\u1161\u11ab\u1100\u116e\u11a8\u110b\u1165 (Korean) \u2022 Portugue\u0302s (Brasil) \u2022 \u7b80\u4f53\u4e2d\u6587 (Simplified Chinese) \u2022 \u7e41\u9ad4\u4e2d\u6587 (Taiwanese Mandarin).",
     "image": null,

.github/workflows/deploy-BETA-linters.yml

@@ -155,6 +155,7 @@ jobs:
             "repository_semgrep",
             "repository_syft",
             "repository_trivy",
+            "repository_trufflehog",
             "rst_rst_lint",
             "rst_rstcheck",
             "rst_rstfmt",

.github/workflows/deploy-DEV-linters.yml

@@ -144,6 +144,7 @@ jobs:
             "repository_semgrep",
             "repository_syft",
             "repository_trivy",
+            "repository_trufflehog",
             "rst_rst_lint",
             "rst_rstcheck",
             "rst_rstfmt",

.github/workflows/deploy-RELEASE-linters.yml

@@ -131,6 +131,7 @@ jobs:
             "repository_semgrep",
             "repository_syft",
             "repository_trivy",
+            "repository_trufflehog",
             "rst_rst_lint",
             "rst_rstcheck",
             "rst_rstfmt",

Dockerfile

@@ -701,6 +701,10 @@ RUN curl -sSfL https://raw.githubusercontent.com/anchore/syft/main/install.sh |
 # trivy installation
     && wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin \
 
+# trufflehog installation
+# Next line commented because already managed by another linter
+# RUN curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin
+
 # sfdx-scanner-apex installation
     && sfdx plugins:install @salesforce/sfdx-scanner \
     && npm cache clean --force || true \

docs/standalone-linters.md

@@ -84,6 +84,7 @@
 | REPOSITORY_SEMGREP                | oxsecurity/megalinter-only-repository_semgrep:beta                |        ![Docker Image Size (tag)](https://img.shields.io/docker/image-size/oxsecurity/megalinter-only-repository_semgrep/beta)         |
 | REPOSITORY_SYFT                   | oxsecurity/megalinter-only-repository_syft:beta                   |          ![Docker Image Size (tag)](https://img.shields.io/docker/image-size/oxsecurity/megalinter-only-repository_syft/beta)          |
 | REPOSITORY_TRIVY                  | oxsecurity/megalinter-only-repository_trivy:beta                  |         ![Docker Image Size (tag)](https://img.shields.io/docker/image-size/oxsecurity/megalinter-only-repository_trivy/beta)          |
+| REPOSITORY_TRUFFLEHOG             | oxsecurity/megalinter-only-repository_trufflehog:beta             |       ![Docker Image Size (tag)](https://img.shields.io/docker/image-size/oxsecurity/megalinter-only-repository_trufflehog/beta)       |
 | RST_RST_LINT                      | oxsecurity/megalinter-only-rst_rst_lint:beta                      |           ![Docker Image Size (tag)](https://img.shields.io/docker/image-size/oxsecurity/megalinter-only-rst_rst_lint/beta)            |
 | RST_RSTCHECK                      | oxsecurity/megalinter-only-rst_rstcheck:beta                      |           ![Docker Image Size (tag)](https://img.shields.io/docker/image-size/oxsecurity/megalinter-only-rst_rstcheck/beta)            |
 | RST_RSTFMT                        | oxsecurity/megalinter-only-rst_rstfmt:beta                        |            ![Docker Image Size (tag)](https://img.shields.io/docker/image-size/oxsecurity/megalinter-only-rst_rstfmt/beta)             |

flavors/ci_light/Dockerfile

@@ -201,6 +201,10 @@ RUN wget -q -O - https://raw.githubusercontent.com/dotenv-linter/dotenv-linter/m
     && wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin
 
 
+# trufflehog installation
+# Next line commented because already managed by another linter
+# RUN curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin
+
 #OTHER__END
 
 ################################

flavors/ci_light/flavor.json

@@ -20,6 +20,7 @@
         "REPOSITORY_GRYPE",
         "REPOSITORY_SECRETLINT",
         "REPOSITORY_TRIVY",
+        "REPOSITORY_TRUFFLEHOG",
         "XML_XMLLINT",
         "YAML_PRETTIER",
         "YAML_YAMLLINT",

flavors/cupcake/Dockerfile

@@ -473,6 +473,10 @@ ENV KICS_QUERIES_PATH=/opt/kics/assets/queries KICS_LIBRARIES_PATH=/opt/kics/ass
 RUN wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin
 
 
+# trufflehog installation
+# Next line commented because already managed by another linter
+# RUN curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin
+
 # lychee installation
 # Managed with COPY --link --from=lychee /usr/local/bin/lychee /usr/bin/
 

flavors/cupcake/flavor.json

@@ -69,6 +69,7 @@
         "REPOSITORY_SECRETLINT",
         "REPOSITORY_SEMGREP",
         "REPOSITORY_TRIVY",
+        "REPOSITORY_TRUFFLEHOG",
         "RST_RST_LINT",
         "RST_RSTCHECK",
         "RST_RSTFMT",

flavors/documentation/Dockerfile

@@ -282,6 +282,10 @@ RUN printf '#!/bin/bash \n\nif [[ -x "$1" ]]; then exit 0; else echo "Error: Fil
     && wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin
 
 
+# trufflehog installation
+# Next line commented because already managed by another linter
+# RUN curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin
+
 # vale installation
 # Managed with COPY --link --from=vale /bin/vale /bin/vale
 

flavors/documentation/flavor.json

@@ -41,6 +41,7 @@
         "REPOSITORY_SECRETLINT",
         "REPOSITORY_SEMGREP",
         "REPOSITORY_TRIVY",
+        "REPOSITORY_TRUFFLEHOG",
         "SNAKEMAKE_LINT",
         "SNAKEMAKE_SNAKEFMT",
         "SPELL_CSPELL",

flavors/dotnet/Dockerfile

@@ -367,6 +367,10 @@ RUN curl --retry 5 --retry-delay 5 -sLO "${ARM_TTK_URI}" \
 # trivy installation
     && wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin \
 
+# trufflehog installation
+# Next line commented because already managed by another linter
+# RUN curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin
+
 # vale installation
 # Managed with COPY --link --from=vale /bin/vale /bin/vale
 

flavors/dotnet/flavor.json

@@ -55,6 +55,7 @@
         "REPOSITORY_SECRETLINT",
         "REPOSITORY_SEMGREP",
         "REPOSITORY_TRIVY",
+        "REPOSITORY_TRUFFLEHOG",
         "SNAKEMAKE_LINT",
         "SNAKEMAKE_SNAKEFMT",
         "SPELL_CSPELL",

flavors/dotnetweb/Dockerfile

@@ -387,6 +387,10 @@ RUN curl --retry 5 --retry-delay 5 -sLO "${ARM_TTK_URI}" \
 # trivy installation
     && wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin \
 
+# trufflehog installation
+# Next line commented because already managed by another linter
+# RUN curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin
+
 # vale installation
 # Managed with COPY --link --from=vale /bin/vale /bin/vale
 

flavors/dotnetweb/flavor.json

@@ -61,6 +61,7 @@
         "REPOSITORY_SECRETLINT",
         "REPOSITORY_SEMGREP",
         "REPOSITORY_TRIVY",
+        "REPOSITORY_TRUFFLEHOG",
         "SNAKEMAKE_LINT",
         "SNAKEMAKE_SNAKEFMT",
         "SPELL_CSPELL",

flavors/go/Dockerfile

@@ -297,6 +297,10 @@ RUN printf '#!/bin/bash \n\nif [[ -x "$1" ]]; then exit 0; else echo "Error: Fil
     && wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin
 
 
+# trufflehog installation
+# Next line commented because already managed by another linter
+# RUN curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin
+
 # vale installation
 # Managed with COPY --link --from=vale /bin/vale /bin/vale
 

flavors/go/flavor.json

@@ -43,6 +43,7 @@
         "REPOSITORY_SECRETLINT",
         "REPOSITORY_SEMGREP",
         "REPOSITORY_TRIVY",
+        "REPOSITORY_TRUFFLEHOG",
         "SNAKEMAKE_LINT",
         "SNAKEMAKE_SNAKEFMT",
         "SPELL_CSPELL",

flavors/java/Dockerfile

@@ -358,6 +358,10 @@ RUN wget --quiet https://github.com/pmd/pmd/releases/download/pmd_releases%2F${P
     && wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin
 
 
+# trufflehog installation
+# Next line commented because already managed by another linter
+# RUN curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin
+
 # vale installation
 # Managed with COPY --link --from=vale /bin/vale /bin/vale
 

flavors/java/flavor.json

@@ -47,6 +47,7 @@
         "REPOSITORY_SECRETLINT",
         "REPOSITORY_SEMGREP",
         "REPOSITORY_TRIVY",
+        "REPOSITORY_TRUFFLEHOG",
         "SNAKEMAKE_LINT",
         "SNAKEMAKE_SNAKEFMT",
         "SPELL_CSPELL",

flavors/javascript/Dockerfile

@@ -299,6 +299,10 @@ RUN printf '#!/bin/bash \n\nif [[ -x "$1" ]]; then exit 0; else echo "Error: Fil
     && wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin
 
 
+# trufflehog installation
+# Next line commented because already managed by another linter
+# RUN curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin
+
 # vale installation
 # Managed with COPY --link --from=vale /bin/vale /bin/vale
 

flavors/javascript/flavor.json

@@ -47,6 +47,7 @@
         "REPOSITORY_SECRETLINT",
         "REPOSITORY_SEMGREP",
         "REPOSITORY_TRIVY",
+        "REPOSITORY_TRUFFLEHOG",
         "SNAKEMAKE_LINT",
         "SNAKEMAKE_SNAKEFMT",
         "SPELL_CSPELL",

flavors/php/Dockerfile

@@ -324,6 +324,10 @@ RUN curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh |
     && wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin
 
 
+# trufflehog installation
+# Next line commented because already managed by another linter
+# RUN curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin
+
 # vale installation
 # Managed with COPY --link --from=vale /bin/vale /bin/vale
 

flavors/php/flavor.json

@@ -45,6 +45,7 @@
         "REPOSITORY_SECRETLINT",
         "REPOSITORY_SEMGREP",
         "REPOSITORY_TRIVY",
+        "REPOSITORY_TRUFFLEHOG",
         "SNAKEMAKE_LINT",
         "SNAKEMAKE_SNAKEFMT",
         "SPELL_CSPELL",

flavors/python/Dockerfile

@@ -297,6 +297,10 @@ RUN curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh |
     && wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin
 
 
+# trufflehog installation
+# Next line commented because already managed by another linter
+# RUN curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin
+
 # vale installation
 # Managed with COPY --link --from=vale /bin/vale /bin/vale
 

flavors/python/flavor.json

@@ -49,6 +49,7 @@
         "REPOSITORY_SECRETLINT",
         "REPOSITORY_SEMGREP",
         "REPOSITORY_TRIVY",
+        "REPOSITORY_TRUFFLEHOG",
         "RST_RST_LINT",
         "RST_RSTCHECK",
         "RST_RSTFMT",

flavors/ruby/Dockerfile

@@ -283,6 +283,10 @@ RUN printf '#!/bin/bash \n\nif [[ -x "$1" ]]; then exit 0; else echo "Error: Fil
     && wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin
 
 
+# trufflehog installation
+# Next line commented because already managed by another linter
+# RUN curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin
+
 # vale installation
 # Managed with COPY --link --from=vale /bin/vale /bin/vale
 

flavors/ruby/flavor.json

@@ -40,6 +40,7 @@
         "REPOSITORY_SECRETLINT",
         "REPOSITORY_SEMGREP",
         "REPOSITORY_TRIVY",
+        "REPOSITORY_TRUFFLEHOG",
         "RUBY_RUBOCOP",
         "SNAKEMAKE_LINT",
         "SNAKEMAKE_SNAKEFMT",

flavors/rust/Dockerfile

@@ -277,6 +277,10 @@ RUN printf '#!/bin/bash \n\nif [[ -x "$1" ]]; then exit 0; else echo "Error: Fil
     && wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin
 
 
+# trufflehog installation
+# Next line commented because already managed by another linter
+# RUN curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin
+
 # vale installation
 # Managed with COPY --link --from=vale /bin/vale /bin/vale
 

flavors/rust/flavor.json

@@ -40,6 +40,7 @@
         "REPOSITORY_SECRETLINT",
         "REPOSITORY_SEMGREP",
         "REPOSITORY_TRIVY",
+        "REPOSITORY_TRUFFLEHOG",
         "RUST_CLIPPY",
         "SNAKEMAKE_LINT",
         "SNAKEMAKE_SNAKEFMT",

flavors/salesforce/Dockerfile

@@ -286,6 +286,10 @@ RUN echo y|sfdx plugins:install sfdx-hardis \
 # trivy installation
     && wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin \
 
+# trufflehog installation
+# Next line commented because already managed by another linter
+# RUN curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin
+
 # sfdx-scanner-apex installation
     && sfdx plugins:install @salesforce/sfdx-scanner \
     && npm cache clean --force || true \

flavors/salesforce/flavor.json

@@ -42,6 +42,7 @@
         "REPOSITORY_SECRETLINT",
         "REPOSITORY_SEMGREP",
         "REPOSITORY_TRIVY",
+        "REPOSITORY_TRUFFLEHOG",
         "SALESFORCE_SFDX_SCANNER_APEX",
         "SALESFORCE_SFDX_SCANNER_AURA",
         "SALESFORCE_SFDX_SCANNER_LWC",

flavors/security/Dockerfile

@@ -235,6 +235,10 @@ RUN curl -sSfL https://raw.githubusercontent.com/anchore/syft/main/install.sh |
     && wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin
 
 
+# trufflehog installation
+# Next line commented because already managed by another linter
+# RUN curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin
+
 # tflint installation
 # Managed with COPY --link --from=tflint /usr/local/bin/tflint /usr/bin/
 

flavors/security/flavor.json

@@ -21,6 +21,7 @@
         "REPOSITORY_SEMGREP",
         "REPOSITORY_SYFT",
         "REPOSITORY_TRIVY",
+        "REPOSITORY_TRUFFLEHOG",
         "TERRAFORM_TFLINT",
         "TERRAFORM_TERRASCAN",
         "TERRAFORM_TERRAGRUNT"

flavors/swift/Dockerfile

@@ -280,6 +280,10 @@ RUN rc-update add docker boot && rc-service docker start || true \
     && wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin
 
 
+# trufflehog installation
+# Next line commented because already managed by another linter
+# RUN curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin
+
 # vale installation
 # Managed with COPY --link --from=vale /bin/vale /bin/vale
 

flavors/swift/flavor.json

@@ -40,6 +40,7 @@
         "REPOSITORY_SECRETLINT",
         "REPOSITORY_SEMGREP",
         "REPOSITORY_TRIVY",
+        "REPOSITORY_TRUFFLEHOG",
         "SNAKEMAKE_LINT",
         "SNAKEMAKE_SNAKEFMT",
         "SPELL_CSPELL",

flavors/terraform/Dockerfile

@@ -295,6 +295,10 @@ ENV KICS_QUERIES_PATH=/opt/kics/assets/queries KICS_LIBRARIES_PATH=/opt/kics/ass
 RUN wget --tries=5 -q -O - https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b /usr/local/bin
 
 
+# trufflehog installation
+# Next line commented because already managed by another linter
+# RUN curl -sSfL https://raw.githubusercontent.com/anchore/grype/main/install.sh | sh -s -- -b /usr/local/bin
+
 # vale installation
 # Managed with COPY --link --from=vale /bin/vale /bin/vale
 

flavors/terraform/flavor.json

@@ -41,6 +41,7 @@
         "REPOSITORY_SECRETLINT",
         "REPOSITORY_SEMGREP",
         "REPOSITORY_TRIVY",
+        "REPOSITORY_TRUFFLEHOG",
         "SNAKEMAKE_LINT",
         "SNAKEMAKE_SNAKEFMT",
         "SPELL_CSPELL",