Skip to content

PDP-684 : Update trufflehog-scan.yml #27

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
brijeshp56 merged 1 commit into from
Jan 16, 2026
Merged

PDP-684 : Update trufflehog-scan.yml #27

brijeshp56 merged 1 commit into from
Jan 16, 2026

Conversation

@brijeshp56
Copy link
Collaborator

@brijeshp56 brijeshp56 commented Jan 16, 2026

PDP-684 : Update trufflehog-scan.yml

@brijeshp56
PDP-684 : Update trufflehog-scan.yml
f4e15b5 
PDP-684 : Update trufflehog-scan.yml
@brijeshp56 brijeshp56 requested a review from Copilot January 16, 2026 08:43
Copilot AI reviewed Jan 16, 2026
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR updates the TruffleHog security scanning workflow to streamline its output and reduce verbosity while maintaining essential functionality.

Changes:

  • Simplified console output by removing decorative separators and reducing logging verbosity
  • Removed intermediate file scanning output section
  • Consolidated summary messaging to occur after output variables are set

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

.github/workflows/trufflehog-scan.yml
git diff --name-only ${{ github.event.pull_request.base.sha }}..${{ github.event.pull_request.head.sha }}
fi
echo "========================================"
--no-update 2>/dev/null || true)
Copy link

Copilot AI Jan 16, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Redirecting stderr to /dev/null silences all errors, making debugging difficult. Consider using 2>&1 to capture errors in the output or logging them separately for troubleshooting purposes.

Suggested change
--no-update 2>/dev/null || true)
--no-update || true)

Copilot uses AI. Check for mistakes.
.github/workflows/trufflehog-scan.yml
Comment on lines 124 to +126
echo "verified_count=${VERIFIED_COUNT}" >> $GITHUB_OUTPUT
echo "unverified_count=${UNVERIFIED_COUNT}" >> $GITHUB_OUTPUT
echo "Scan complete: ${VERIFIED_COUNT} verified, ${UNVERIFIED_COUNT} unverified secrets found"
Copy link

Copilot AI Jan 16, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The summary message is now output after setting GITHUB_OUTPUT variables, but it will only appear in the workflow logs. Consider whether this message should be output before setting the output variables for better visibility during workflow execution, or if the current placement is intentional.

Suggested change
echo "verified_count=${VERIFIED_COUNT}" >> $GITHUB_OUTPUT
echo "unverified_count=${UNVERIFIED_COUNT}" >> $GITHUB_OUTPUT
echo "Scan complete: ${VERIFIED_COUNT} verified, ${UNVERIFIED_COUNT} unverified secrets found"
echo "Scan complete: ${VERIFIED_COUNT} verified, ${UNVERIFIED_COUNT} unverified secrets found"
echo "verified_count=${VERIFIED_COUNT}" >> $GITHUB_OUTPUT
echo "unverified_count=${UNVERIFIED_COUNT}" >> $GITHUB_OUTPUT

Copilot uses AI. Check for mistakes.
@brijeshp56 brijeshp56 merged commit 709c401 into agottumu_dev Jan 16, 2026
1 check passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@brijeshp56