From 7a87a542b377948a8ef8935001294a9ec0754185 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 4 Nov 2024 18:23:10 -0500
Subject: [PATCH] chore: bump trufflesecurity/trufflehog from
 e6d786a7d99f05f14327ba8e2ab75aa863b4df3b to
 5ca4a17a4c7a242046966b84cf9d7a53364971bc (#1386)

Bumps
[trufflesecurity/trufflehog](https://github.com/trufflesecurity/trufflehog)
from e6d786a7d99f05f14327ba8e2ab75aa863b4df3b to
5ca4a17a4c7a242046966b84cf9d7a53364971bc.
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/trufflesecurity/trufflehog/blob/main/.goreleaser.yml">trufflesecurity/trufflehog's
changelog</a>.</em></p>
<blockquote>
<p>version: 2
builds:</p>
<ul>
<li>binary: trufflehog
ldflags:
<ul>
<li>-s -w -X
'github.com/trufflesecurity/trufflehog/v3/pkg/version.BuildVersion={{
.Version }}'
env: [CGO_ENABLED=0]
goos:</li>
<li>linux</li>
<li>windows</li>
<li>darwin
goarch:</li>
<li>amd64</li>
<li>arm64
dockers:</li>
</ul>
</li>
<li>image_templates: [&quot;trufflesecurity/{{ .ProjectName }}:{{
.Version }}-amd64&quot;]
dockerfile: Dockerfile.goreleaser
extra_files:
<ul>
<li>entrypoint.sh
use: buildx
build_flag_templates:</li>
<li>--platform=linux/amd64</li>
<li>--label=org.opencontainers.image.title={{ .ProjectName }}</li>
<li>--label=org.opencontainers.image.description={{ .ProjectName }}</li>
<li>--label=org.opencontainers.image.url=<a
href="https://github.com/trufflesecurity/%7B%7B">https://github.com/trufflesecurity/{{</a>
.ProjectName }}</li>
<li>--label=org.opencontainers.image.source=<a
href="https://github.com/trufflesecurity/%7B%7B">https://github.com/trufflesecurity/{{</a>
.ProjectName }}</li>
<li>--label=org.opencontainers.image.version={{ .Version }}</li>
<li>--label=org.opencontainers.image.revision={{ .FullCommit }}</li>
<li>--label=org.opencontainers.image.licenses=AGPL-3.0</li>
</ul>
</li>
<li>image_templates: [&quot;trufflesecurity/{{ .ProjectName }}:{{
.Version }}-arm64v8&quot;]
goarch: arm64
dockerfile: Dockerfile.goreleaser
extra_files:
<ul>
<li>entrypoint.sh
use: buildx
build_flag_templates:</li>
<li>--platform=linux/arm64/v8</li>
<li>--label=org.opencontainers.image.title={{ .ProjectName }}</li>
<li>--label=org.opencontainers.image.description={{ .ProjectName }}</li>
<li>--label=org.opencontainers.image.url=<a
href="https://github.com/trufflesecurity/%7B%7B">https://github.com/trufflesecurity/{{</a>
.ProjectName }}</li>
<li>--label=org.opencontainers.image.source=<a
href="https://github.com/trufflesecurity/%7B%7B">https://github.com/trufflesecurity/{{</a>
.ProjectName }}</li>
<li>--label=org.opencontainers.image.version={{ .Version }}</li>
<li>--label=org.opencontainers.image.revision={{ .FullCommit }}</li>
<li>--label=org.opencontainers.image.licenses=AGPL-3.0</li>
</ul>
</li>
<li>image_templates: [&quot;ghcr.io/trufflesecurity/{{ .ProjectName
}}:{{ .Version }}-amd64&quot;]
dockerfile: Dockerfile.goreleaser
extra_files:
<ul>
<li>entrypoint.sh
use: buildx
build_flag_templates:</li>
<li>--platform=linux/amd64</li>
</ul>
</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/trufflesecurity/trufflehog/commit/5ca4a17a4c7a242046966b84cf9d7a53364971bc"><code>5ca4a17</code></a>
Add owner to github tokens (<a
href="https://redirect.github.com/trufflesecurity/trufflehog/issues/3558">#3558</a>)</li>
<li><a
href="https://github.com/trufflesecurity/trufflehog/commit/fa871b0c1e220710b0401dbd05bfc158a4635762"><code>fa871b0</code></a>
[feat] - Add Weights and Biases detector (<a
href="https://redirect.github.com/trufflesecurity/trufflehog/issues/3551">#3551</a>)</li>
<li><a
href="https://github.com/trufflesecurity/trufflehog/commit/6923843bc4046d849dc561b134546d198e9b7f15"><code>6923843</code></a>
[chore] - minor cleanup S3 source (<a
href="https://redirect.github.com/trufflesecurity/trufflehog/issues/3554">#3554</a>)</li>
<li><a
href="https://github.com/trufflesecurity/trufflehog/commit/741146f17eff22fbe14684392b085de081755a10"><code>741146f</code></a>
fix(deps): update module github.com/golang-jwt/jwt/v4 to v4.5.1 (<a
href="https://redirect.github.com/trufflesecurity/trufflehog/issues/3555">#3555</a>)</li>
<li>See full diff in <a
href="https://github.com/trufflesecurity/trufflehog/compare/e6d786a7d99f05f14327ba8e2ab75aa863b4df3b...5ca4a17a4c7a242046966b84cf9d7a53364971bc">compare
view</a></li>
</ul>
</details>
<br />


Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)


</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
 .github/workflows/secret-scan.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/secret-scan.yml b/.github/workflows/secret-scan.yml
index 4aadbb42..8ff8bf45 100644
--- a/.github/workflows/secret-scan.yml
+++ b/.github/workflows/secret-scan.yml
@@ -17,6 +17,6 @@ jobs:
       with:
         fetch-depth: 0
     - name: Default Secret Scanning
-      uses: trufflesecurity/trufflehog@e6d786a7d99f05f14327ba8e2ab75aa863b4df3b # main
+      uses: trufflesecurity/trufflehog@5ca4a17a4c7a242046966b84cf9d7a53364971bc # main
       with:
         extra_args: --debug --no-verification # Warn on potential violations