gitleaks
Gitleaks is a SAST tool for detecting hard coded secrets like passwords, API keys, and tokens in git repos. Gitleaks is an easy-to-use, all-in-one solution for finding secrets, past or present, in your code. Set leaks-exit-code to 0 for outputs to be saved.
Name:gitleaks
Category:Static Code Analysis
Publisher:trickest
Created:6/23/2021
Container:
quay.io/trickest/gitleaks:8.10.1Output Type:
License:Unknown
Source:View Source
Parameters
--configconfig file path--no-gittreat git repo as a regular directory and scan those files, --log-opts has no effect on the scan when --no-git is set--redactredact secrets from logs and stdout--verboseshow verbose output from scan--log-levellog level (trace, debug, info, warn, error, fatal) (default info)--log-optsgit log options--report-formatoutput format (json, csv, sarif) (default json)--repo-config-pathPath to gitleaks config relative to repo root--sourceDirectory to scan