Commit ea4e388d authored by Andres Anaya Amariels's avatar Andres Anaya Amariels 🚀
Browse files

fix: update trufflehog command to use max_depth option in secrets scan

parent 21e904e0

sdk/templates/ci_dev.gitlab-ci.yml

+2 −1
Original line number Diff line number Diff line
@@ -61,7 +61,8 @@ dev_secrets_in_repo: 
        echo "trufflehog already installed: $(trufflehog --version)"

      fi



      trufflehog filesystem $CI_PROJECT_DIR --exclude_paths "$CI_PROJECT_DIR/cicd/exclusions" --fail

      # trufflehog filesystem $CI_PROJECT_DIR --exclude_paths "$CI_PROJECT_DIR/cicd/exclusions" --fail

      trufflehog $CI_PROJECT_DIR --exclude_paths "$CI_PROJECT_DIR/cicd/exclusions" --max_depth=5



  <<: *dev_common

sdk/templates/ci_staging.gitlab-ci.yml

+2 −1
Original line number Diff line number Diff line
@@ -70,7 +70,8 @@ staging_secrets_in_repo: 
        echo "trufflehog already installed: $(trufflehog --version)"

      fi



      trufflehog filesystem $CI_PROJECT_DIR --exclude_paths "$CI_PROJECT_DIR/cicd/exclusions" --fail

      # trufflehog filesystem $CI_PROJECT_DIR --exclude_paths "$CI_PROJECT_DIR/cicd/exclusions" --fail

      trufflehog $CI_PROJECT_DIR --exclude_paths "$CI_PROJECT_DIR/cicd/exclusions" --max_depth=5



  <<: *staging_common