gitleaks
Gitleaks is a SAST tool for detecting hard coded secrets like passwords, API keys, and tokens in git repos. Gitleaks is an easy-to-use, all-in-one solution for finding secrets, past or present, in your code. Set leaks-exit-code to 0 for outputs to be saved.
Name:gitleaks
Category:Static Code Analysis
Publisher:trickest
Created:6/23/2021
Container:
quay.io/trickest/gitleaks:8.10.1
Output Type:
License:Unknown
Source:View Source
Parameters
--config
config file path--no-git
treat git repo as a regular directory and scan those files, --log-opts has no effect on the scan when --no-git is set--redact
redact secrets from logs and stdout--verbose
show verbose output from scan--log-level
log level (trace, debug, info, warn, error, fatal) (default info)--log-opts
git log options--report-format
output format (json, csv, sarif) (default json)--repo-config-path
Path to gitleaks config relative to repo root--source
Directory to scan