From 47bd7bd917c1cb46c38ba0c2d87e252c58d69f90 Mon Sep 17 00:00:00 2001
From: alexanderM91 <oleksandr.myrnyi@spryker.com>
Date: Wed, 16 Oct 2024 14:55:00 +0200
Subject: [PATCH] Trufflehog, iamge security scan

---
 .github/workflows/security-scan.yml | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/.github/workflows/security-scan.yml b/.github/workflows/security-scan.yml
index 4092078a..baf2041c 100644
--- a/.github/workflows/security-scan.yml
+++ b/.github/workflows/security-scan.yml
@@ -84,6 +84,12 @@ jobs:
         run: |
           docker run --rm trufflesecurity/trufflehog:latest docker --image spryker/php:${{ matrix.tags }} --only-verified
 
+      - name: Scan Docker image with Trufflehog - Secrets
+        continue-on-error: false
+        run: |
+          docker run --rm trufflesecurity/secrets:latest docker --image spryker/php:${{ matrix.tags }} --only-verified
+
+
       - name: Scan Docker image with Trivy
         uses: aquasecurity/trivy-action@0.28.0
         with: