gitleaks
Gitleaks is a SAST tool for detecting hard coded secrets like passwords, API keys, and tokens in git repos. Gitleaks is an easy-to-use, all-in-one solution for finding secrets, past or present, in your code. Set leaks-exit-code to 0 for outputs to be saved.
Details
Category: Static Code Analysis
Publisher: trickest
Created Date: 6/23/2021
Container: quay.io/trickest/gitleaks:8.10.1
Source URL: https://github.com/zricethezav/gitleaks
Parameters
Command:
--config
- config file pathCommand:
--no-git
- treat git repo as a regular directory and scan those files, --log-opts has no effect on the scan when --no-git is setCommand:
--redact
- redact secrets from logs and stdoutCommand:
--verbose
- show verbose output from scanCommand:
--log-level
- log level (trace, debug, info, warn, error, fatal) (default info)Command:
--log-opts
- git log optionsCommand:
--report-format
- output format (json, csv, sarif) (default json)Command:
--repo-config-path
- Path to gitleaks config relative to repo rootCommand:
--source
- Directory to scan