Skip to content

Commit

Permalink
Update secret-scan.yml (#137)
Browse files Browse the repository at this point in the history
  • Loading branch information
Jeffreyhung authored Jul 17, 2024
1 parent 9ec534e commit 808a698
Showing 1 changed file with 8 additions and 5 deletions.
13 changes: 8 additions & 5 deletions .github/workflows/secret-scan.yml
Original file line number Diff line number Diff line change
Expand Up @@ -20,14 +20,17 @@ jobs:
- name: Install Cosign
uses: sigstore/cosign-installer@v3.5.0

- name: Get latest TruffleHog release
- name: Pin Trufflehog to a know good release
id: trufflehog_release
shell: bash
# run: |
# LATEST_TAG_NAME=$(curl -s https://api.github.com/repos/trufflesecurity/trufflehog/releases/latest | jq -r .name)
# LATEST_RELEASE=$(echo ${LATEST_TAG_NAME:1})
# echo "latest_tag_name=$LATEST_TAG_NAME" >> "$GITHUB_OUTPUT"
# echo "latest_release=$LATEST_RELEASE" >> "$GITHUB_OUTPUT"
run: |
LATEST_TAG_NAME=$(curl -s https://api.github.com/repos/trufflesecurity/trufflehog/releases/latest | jq -r .name)
LATEST_RELEASE=$(echo ${LATEST_TAG_NAME:1})
echo "latest_tag_name=$LATEST_TAG_NAME" >> "$GITHUB_OUTPUT"
echo "latest_release=$LATEST_RELEASE" >> "$GITHUB_OUTPUT"
echo "latest_tag_name=v3.79.0" >> "$GITHUB_OUTPUT"
echo "latest_release=3.79.0" >> "$GITHUB_OUTPUT"
- name: Download and verify TruffleHog release
run: |
Expand Down

0 comments on commit 808a698

Please sign in to comment.