Skip to content

Navigation Menu

Appearance settings

GitHub Copilot
Write better code with AI

GitHub Spark New
Build and deploy intelligent apps

GitHub Models New
Manage and compare prompts

GitHub Advanced Security
Find and fix vulnerabilities

Actions
Automate any workflow
Codespaces
Instant dev environments

Issues
Plan and track work

Code Review
Manage code changes

Discussions
Collaborate outside of code

Code Search
Find more, search less
Explore

Why GitHub

Documentation

GitHub Skills

Blog
Integrations

GitHub Marketplace

MCP Registry
View all features
By company size

Enterprises

Small and medium teams

Startups

Nonprofits
By use case

App Modernization

DevSecOps

DevOps

CI/CD

View all use cases
By industry

Healthcare

Financial services

Manufacturing

Government

View all industries
View all solutions
Topics

AI

DevOps

Security

Software Development

View all
Explore

Learning Pathways

Events & Webinars

Ebooks & Whitepapers

Customer Stories

Partners

Executive Insights
GitHub Sponsors
Fund open source developers
The ReadME Project
GitHub community articles
Repositories

Topics

Trending

Collections
Enterprise platform
AI-powered developer platform
Available add-ons

GitHub Advanced Security
Enterprise-grade security features

Copilot for business
Enterprise-grade AI features

Premium Support
Enterprise-grade 24/7 support
Pricing

Search code, repositories, users, issues, pull requests...

Search

Clear

Search syntax tips

Provide feedback

We read every piece of feedback, and take your input very seriously.

Include my email address so I can be contacted

Saved searches

Use saved searches to filter your results more quickly

Name

Query

To see all available qualifiers, see our documentation.

Appearance settings

You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session.

Dismiss alert

grafana / shared-workflows Public

Notifications You must be signed in to change notification settings
Fork 29
Star 21

Code
Issues 14
Pull requests 33
Actions
Models
Security
Insights

Additional navigation options

Code
Issues
Pull requests
Actions
Models
Security
Insights

chore: add trufflehog scan #1238

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Draft

isaiah-grafana wants to merge 92 commits into main

base: main

Choose a base branch

Loading

Loading

from pr/trufflehog-scan

Conversation 77 Commits 92 Checks 21 Files changed

Uh oh!

There was an error while loading. Please reload this page.

Draft

chore: add trufflehog scan #1238

Show file tree

Hide file tree

Changes from all commits

Commits

Show all changes

Select commit Hold shift + click to select a range

isaiah-grafana Aug 13, 2025

isaiah-grafana Aug 13, 2025

isaiah-grafana Aug 13, 2025

isaiah-grafana Aug 13, 2025

isaiah-grafana Aug 13, 2025

isaiah-grafana Aug 13, 2025

isaiah-grafana Aug 13, 2025

isaiah-grafana Aug 13, 2025

isaiah-grafana Aug 13, 2025

Added this for testing

isaiah-grafana Aug 13, 2025

isaiah-grafana Aug 13, 2025

isaiah-grafana Aug 13, 2025

isaiah-grafana Aug 13, 2025

isaiah-grafana Aug 13, 2025

isaiah-grafana Aug 13, 2025

isaiah-grafana Aug 13, 2025

isaiah-grafana Aug 13, 2025

isaiah-grafana Aug 13, 2025

isaiah-grafana Aug 14, 2025

Updated to pinned commit

isaiah-grafana Aug 20, 2025

Fixed zizmor findings

isaiah-grafana Aug 20, 2025

chore: fix Prettier formatting

isaiah-grafana Aug 20, 2025

Fixes pre-commit failure

isaiah-grafana Aug 20, 2025

Add custom Grafana secret patterns for Trufflehog

isaiah-grafana Sep 15, 2025

Update Trufflehog workflow to use custom Grafana patterns

isaiah-grafana Sep 15, 2025

Fix Trufflehog configuration to use proper YAML format

isaiah-grafana Sep 15, 2025

Embed Trufflehog config directly in workflow

isaiah-grafana Sep 15, 2025

Fix YAML syntax in embedded Trufflehog config

isaiah-grafana Sep 15, 2025

Clean up YAML configuration to fix all syntax errors

isaiah-grafana Sep 15, 2025

Replace YAML config with dual-approach scanning

isaiah-grafana Sep 15, 2025

Fix exclude-paths flag syntax for Trufflehog

isaiah-grafana Sep 15, 2025

Fix exclude-paths to use single file instead of repeated flags

isaiah-grafana Sep 15, 2025

Add detailed secret detection output with file locations

isaiah-grafana Sep 15, 2025

Prevent workflow from scanning its own output files

isaiah-grafana Sep 15, 2025

Fix false positive in Grafana secrets detection

isaiah-grafana Sep 15, 2025

Clean up workflow: consolidate config and simplify logic

isaiah-grafana Sep 15, 2025

Remove redundant and useless workflow steps

isaiah-grafana Sep 15, 2025

Fix code injection vulnerability flagged by zizmor

isaiah-grafana Sep 15, 2025

Fix pre-commit failures: shellcheck and prettier

isaiah-grafana Sep 15, 2025

Remove leftover trufflehog-config.yaml causing prettier failures

isaiah-grafana Sep 15, 2025

Fix trailing whitespace and shell redirection issues

isaiah-grafana Sep 15, 2025

Fix all remaining shellcheck issues in workflow

isaiah-grafana Sep 15, 2025

Fix SC2086 warnings by using arrays for grep arguments

isaiah-grafana Sep 15, 2025

chore: fix formatting and remove trailing whitespace

isaiah-grafana Sep 15, 2025

Improve exclusions to prevent scanning workflow output files

isaiah-grafana Sep 15, 2025

FINAL FIX: Remove condition blocking PR comments on push events

isaiah-grafana Sep 15, 2025

Fix: prettier formatting and trailing whitespace

isaiah-grafana Sep 15, 2025

Fix Trufflehog detection: add aggressive scanning and debugging

isaiah-grafana Sep 17, 2025

CRITICAL FIX: Move PR commenting before workflow failure

isaiah-grafana Sep 17, 2025

Update TruffleHog workflow for comprehensive repository scanning

isaiah-grafana Sep 17, 2025

Fix linting issues in TruffleHog workflow

isaiah-grafana Sep 17, 2025

Remove trailing whitespace from TruffleHog workflow

isaiah-grafana Sep 17, 2025

SECURITY: Add comprehensive GitHub token detection patterns

isaiah-grafana Sep 17, 2025

Focus TruffleHog workflow on open source + Grafana detectors only

isaiah-grafana Sep 17, 2025

Optimize TruffleHog reusable workflow for better performance

isaiah-grafana Sep 23, 2025

Add comprehensive file scanning and git history scanning

isaiah-grafana Sep 23, 2025

Final speed optimizations for TruffleHog reusable workflow

isaiah-grafana Sep 23, 2025

Add unified scan mode for compressed TruffleHog checks

isaiah-grafana Sep 23, 2025

Refine reusable TruffleHog workflow

isaiah-grafana Sep 25, 2025

feat: add reusable TruffleHog secret scanning workflow

isaiah-grafana Sep 26, 2025

fix: resolve YAML syntax and formatting issues

isaiah-grafana Sep 26, 2025

feat: secure reusable TruffleHog secret scanning workflow

isaiah-grafana Sep 26, 2025

security: disable credential persistence in checkout

isaiah-grafana Sep 26, 2025

fix: resolve shellcheck and formatting issues

isaiah-grafana Sep 26, 2025

fix: apply prettier formatting fixes

isaiah-grafana Sep 26, 2025

fix: improve custom detector patterns for better secret detection

isaiah-grafana Sep 26, 2025

fix: resolve JSON merging error for TruffleHog results

isaiah-grafana Sep 26, 2025

debug: add extensive debugging for TruffleHog detection issues

isaiah-grafana Sep 26, 2025

Fix TruffleHog custom detector configuration format

isaiah-grafana Sep 26, 2025

Fix linting issues in TruffleHog workflow

isaiah-grafana Sep 26, 2025

Remove trailing whitespace from TruffleHog workflow

isaiah-grafana Sep 26, 2025

Add comment dismissal for TruffleHog PR comments

isaiah-grafana Sep 26, 2025

Fix template injection security vulnerability

isaiah-grafana Sep 26, 2025

Implement zizmor-style comment dismissal for TruffleHog

isaiah-grafana Sep 26, 2025

Remove trailing whitespace from TruffleHog workflow

isaiah-grafana Sep 26, 2025

Fix GitHub Actions multiline output format

isaiah-grafana Sep 26, 2025

Remove trailing whitespace from TruffleHog workflow

isaiah-grafana Sep 26, 2025

Fix comment dismissal conditions to match zizmor pattern

isaiah-grafana Sep 26, 2025

Implement comprehensive TruffleHog comment hiding

isaiah-grafana Sep 26, 2025

Fix template injection in comprehensive comment hiding

isaiah-grafana Sep 26, 2025

Revert to zizmor-style comment hiding pattern

isaiah-grafana Sep 26, 2025

Improve custom detector comment description

isaiah-grafana Sep 26, 2025

Fix Grafana token regex pattern to match actual token length

isaiah-grafana Sep 26, 2025

Remove custom Grafana detectors - use TruffleHog's built-in detectors

isaiah-grafana Sep 26, 2025

Add simple custom Grafana detector for testing

isaiah-grafana Sep 26, 2025

Remove custom detector - rely on TruffleHog built-in GrafanaServiceAc…

isaiah-grafana Sep 26, 2025

Improve TruffleHog workflow performance and reliability

isaiah-grafana Sep 26, 2025

Clean up TruffleHog output formatting

isaiah-grafana Sep 26, 2025

Fix multiple TruffleHog checks issue

isaiah-grafana Sep 26, 2025

Add TruffleHog scan results artifact

isaiah-grafana Sep 26, 2025

Fix template injection vulnerability in artifact creation

isaiah-grafana Sep 26, 2025

Fix shellcheck warning: remove unused SEVERITY variable

isaiah-grafana Sep 26, 2025

File filter

Filter by extension

Filter by extension .yml (2) dotfile (2) All 2 file types selected

Only manifest files

Deleted files Viewed files

Conversations

Failed to load comments.

Loading

Uh oh!

There was an error while loading. Please reload this page.

Jump to

Jump to file

Failed to load files.

Loading

Uh oh!

There was an error while loading. Please reload this page.

Diff view

Unified

Split

Hide whitespace

Diff view

Unified

Split

Hide whitespace

.DS_Store
- dependabot.yml
- - reusable-trufflehog.yml
- .DS_Store

There are no files selected for viewing

Binary file added BIN +6 KB .DS_Store

Show comments

View file

Open in desktop

Binary file not shown.

23 changes: 0 additions & 23 deletions 23 .github/dependabot.yml

Show comments

View file

Open in desktop

This file was deleted.

Oops, something went wrong.

Uh oh!

There was an error while loading. Please reload this page.

Loading

Oops, something went wrong.

Uh oh!

There was an error while loading. Please reload this page.

Loading

Oops, something went wrong.

Uh oh!

There was an error while loading. Please reload this page.

Add this suggestion to a batch that can be applied as a single commit. This suggestion is invalid because no changes were made to the code. Suggestions cannot be applied while the pull request is closed. Suggestions cannot be applied while viewing a subset of changes. Only one suggestion per line can be applied in a batch. Add this suggestion to a batch that can be applied as a single commit. Applying suggestions on deleted lines is not supported. You must change the existing code in this line in order to create a valid suggestion. Outdated suggestions cannot be applied. This suggestion has been applied or marked resolved. Suggestions cannot be applied from pending reviews. Suggestions cannot be applied on multi-line comments. Suggestions cannot be applied while the pull request is queued to merge. Suggestion cannot be applied right now. Please check back later.

Footer

© 2025 GitHub, Inc.

Footer navigation

Terms
Privacy
Security
Status
Community
Docs
Contact

You can’t perform that action at this time.