gitleaks
Gitleaks is a SAST tool for detecting hard coded secrets like passwords, API keys, and tokens in git repos. Gitleaks is an easy-to-use, all-in-one solution for finding secrets, past or present, in your code. Set leaks-exit-code to 0 for outputs to be saved.
Details
Category: Static Code Analysis
Publisher: trickest
Created Date: 6/23/2021
Container: quay.io/trickest/gitleaks:8.10.1
Source URL: https://github.com/zricethezav/gitleaks
Parameters
config
file
Command:
--config - config file pathno-git
boolean
Command:
--no-git - treat git repo as a regular directory and scan those files, --log-opts has no effect on the scan when --no-git is setredact
boolean
Command:
--redact - redact secrets from logs and stdoutverbose
boolean
Command:
--verbose - show verbose output from scanlog-level
string
Command:
--log-level - log level (trace, debug, info, warn, error, fatal) (default info)log-options
string
Command:
--log-opts - git log optionsreport-format
string
Command:
--report-format - output format (json, csv, sarif) (default json)repo-config-path
file
Command:
--repo-config-path - Path to gitleaks config relative to repo rootsource-git-repository
folder
requiredCommand:
--source - Directory to scan