Actions
action #116137
open[qe-core] Trufflehog scanning not behaving correctly - Reenable trufflehog for the main branch
Status:
Blocked
Priority:
Normal
Assignee:
-
Category:
Infrastructure
Target version:
-
Start date:
2022-09-01
Due date:
% Done:
0%
Estimated time:
Difficulty:
Description
Seems like that the github workflow is behaving in a strange way on PRs:
- sometimes nothing happens and in a few seconds it succedes
- sometimes it fails after a couple of minutes scan, with always the same findings, some very old keys
Expected behavior:
- should scan only the PR delta and not the entire repository
Reason: https://github.com/trufflesecurity/trufflehog/issues/666
Suggestions¶
Once trufflesecurity/trufflehog/issues/666 has a fix, try it out in the test repo on the trufflehog branch, if all goes fine, reenable it for the master branch
Acceptance Criteria¶
- AC1: Trufflehog is reenabled for the master branch
Actions