Skip to content
lock

GitHub Action

Secret Scan

1.0.0 Latest version

Secret Scan

lock

Secret Scan

Scan your repository for secrets

Installation

Copy and paste the following snippet into your .yml file.

 
              
- name: Secret Scan

              
  uses: max/[email protected]
Learn more about this action in max/secret-scan

Choose a version

Secret Scan for GitHub Actions

Scan your repo for secrets. AWS tokens, keys, this has you covered.

Example

on: push
name: Find Secrets
jobs:
  main:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v2
      - uses: max/secret-scan@master

Example with path filters

on: push
name: Find Secrets
jobs:
  main:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v2
      - uses: max/secret-scan@master
        with:
          include_path: 'configuration/include_paths.txt'
          exclude_path: 'configuration/exclude_paths.txt'

For more information about the format of the configuration files for include or exclude paths, please refer to TruffleHog.