new | ask | show | jobs
brumbelow 8 hours ago  [ - ]

His paste literally says...

" # to scan from the local docker daemon"

That aside, I just tested against trufflehog myself. It did take about 10-15%longer for a scan to complete but this is expected. Layerleak is scanning any additional or deleted tags found for the digest while trufflehog only scans the one. I am proud of the project, so I am showing it off. If you dont like, dont use :)

Thanks for checking it out.

KomoD 8 hours ago  [ - ]

Yeah, like I explained you CAN use an image from a docker daemon if you WANT to:

    trufflehog docker --image docker://new_image:tag
If you don't want to scan from a docker daemon then, you can pull from docker hub:

    trufflehog docker --image trufflesecurity/secrets
or from a tarball:

    trufflehog docker --image file://path_to_image.tar