Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Call trufflehog with --only-verified to avoid false positives in .git/config #2838

Merged
merged 1 commit into from
Jul 26, 2023

Conversation

nvuillam
Copy link
Member

Fixes #2834

@nvuillam nvuillam temporarily deployed to dev July 26, 2023 12:14 — with GitHub Actions Inactive
@nvuillam nvuillam temporarily deployed to dev July 26, 2023 12:14 — with GitHub Actions Inactive
@github-actions
Copy link
Contributor

github-actions bot commented Jul 26, 2023

🦙 MegaLinter status: ⚠️ WARNING

Descriptor Linter Files Fixed Errors Elapsed time
✅ BASH bash-exec 5 0 0.02s
✅ BASH shellcheck 5 0 0.12s
✅ BASH shfmt 5 0 0 0.29s
✅ COPYPASTE jscpd yes no 3.94s
✅ DOCKERFILE hadolint 123 0 20.79s
✅ JSON eslint-plugin-jsonc 23 0 0 2.78s
✅ JSON jsonlint 21 0 0.25s
✅ JSON v8r 23 0 14.89s
✅ MAKEFILE checkmake 1 0 0.0s
⚠️ MARKDOWN markdownlint 255 0 254 32.2s
✅ MARKDOWN markdown-link-check 255 0 6.61s
✅ MARKDOWN markdown-table-formatter 255 0 0 33.45s
✅ OPENAPI spectral 1 0 1.53s
⚠️ PYTHON bandit 200 61 2.8s
✅ PYTHON black 200 0 0 6.22s
✅ PYTHON flake8 200 0 2.59s
✅ PYTHON isort 200 0 0 0.85s
✅ PYTHON mypy 200 0 11.65s
✅ PYTHON pylint 200 0 14.96s
⚠️ PYTHON pyright 200 324 24.02s
✅ PYTHON ruff 200 0 0 0.59s
✅ REPOSITORY checkov yes no 38.93s
✅ REPOSITORY git_diff yes no 0.28s
⚠️ REPOSITORY grype yes 1 10.67s
✅ REPOSITORY secretlint yes no 13.42s
✅ REPOSITORY trivy yes no 28.68s
✅ REPOSITORY trivy-sbom yes no 1.24s
✅ SPELL cspell 665 0 29.39s
✅ SPELL lychee 335 0 7.1s
✅ XML xmllint 3 0 0 0.29s
✅ YAML prettier 160 0 0 4.88s
✅ YAML v8r 102 0 182.41s
✅ YAML yamllint 161 0 1.78s

See detailed report in MegaLinter reports

MegaLinter is graciously provided by OX Security

Copy link

@quotidian-ennui quotidian-ennui left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Should you re-enable trufflehog in your .mega-linter.yml so that you start "drinking your own champagne" again 😉

@nvuillam nvuillam merged commit 685120c into main Jul 26, 2023
@nvuillam nvuillam deleted the fixes/trufflehog branch July 26, 2023 13:45
sanmai-NL pushed a commit to sanmai-NL/megalinter that referenced this pull request Oct 4, 2023
…it/config (oxsecurity#2838)

Fixes oxsecurity#2834

Co-authored-by: nvuillam <nicolas.vuillamy@ox.security>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

trufflehog linter raises spurious false positives
3 participants