Trufflehog, iamge security scan

spryker · Oct 16, 2024 · 47bd7bd · 47bd7bd
1 parent 03f2711
commit 47bd7bd
Showing 1 changed file with 6 additions and 0 deletions.
diff --git a/.github/workflows/security-scan.yml b/.github/workflows/security-scan.yml
@@ -84,6 +84,12 @@ jobs:
         run: |
           docker run --rm trufflesecurity/trufflehog:latest docker --image spryker/php:${{ matrix.tags }} --only-verified
 
+      - name: Scan Docker image with Trufflehog - Secrets
+        continue-on-error: false
+        run: |
+          docker run --rm trufflesecurity/secrets:latest docker --image spryker/php:${{ matrix.tags }} --only-verified
+
+
       - name: Scan Docker image with Trivy
         uses: aquasecurity/[email protected]
         with: