🍺 BREW Explorer

← all formulae

trufflehog

brew install trufflehog v3.95.6 AGPL-3.0-only

Scan files and git repos for leaked credentials, API keys, and secrets using pattern matching and verification.

Why you might care

Trufflehog detects hardcoded secrets before they reach your repository or CI/CD pipeline, with built-in verification to reduce false positives. It integrates into pre-commit hooks and GitHub Actions, making it essential for teams that want to prevent credential leaks at source. Go-based single binary for fast, portable scanning.

Categories

security scanner version-control

Alternatives

git-secrets detect-secrets gitleaks
3.8k
30-day installs · #712
15.2k
90-day · #648
53.8k
365-day · #647

Build dependencies

go

Links

Blurb generated by claude-haiku-4-5 on today.

Raw metadata 
{
  "aliases": [],
  "alternatives": [
    "git-secrets",
    "detect-secrets",
    "gitleaks"
  ],
  "build_dependencies": [
    "go"
  ],
  "categories": [
    "security",
    "scanner",
    "version-control"
  ],
  "caveats": null,
  "conflicts_with": [],
  "dependencies": [],
  "deprecated": 0,
  "deprecation_reason": null,
  "desc": "Find and verify credentials",
  "disable_reason": null,
  "disabled": 0,
  "enrichment_fetched_at": "2026-06-20T23:41:02+00:00",
  "first_seen": "2026-06-20T23:34:18+00:00",
  "full_name": "trufflehog",
  "github_default_branch": null,
  "github_last_commit_at": null,
  "github_readme_excerpt": null,
  "github_repo": null,
  "github_stars": null,
  "github_topics": [],
  "homepage": "https://trufflesecurity.com/",
  "homepage_og_description": "Truffle Security is an open-source security software company that secures sensitive data by automatically detecting and remediating leaked keys and credentials.",
  "homepage_og_image": "https://framerusercontent.com/images/c9rqEcTgLk1priOj0eoCUkzAVbY.png",
  "homepage_title": "Truffle Security Co.",
  "installs_30d": 3841,
  "installs_365d": 53835,
  "installs_90d": 15165,
  "keg_only": 0,
  "keg_only_reason": null,
  "last_seen": "2026-06-20T23:34:18+00:00",
  "license": "AGPL-3.0-only",
  "llm_generated_at": "2026-06-20T23:46:34+00:00",
  "llm_model": "claude-haiku-4-5",
  "name": "trufflehog",
  "oldnames": [],
  "one_liner": "Scan files and git repos for leaked credentials, API keys, and secrets using pattern matching and verification.",
  "optional_dependencies": [],
  "rank_30d": 712,
  "rank_365d": 647,
  "rank_90d": 648,
  "raw_hash": "82bcd2006a26b32a",
  "recommended_dependencies": [],
  "revision": 0,
  "ruby_source_path": "Formula/t/trufflehog.rb",
  "tap": "homebrew/core",
  "test_dependencies": [],
  "uses_from_macos": [],
  "version_head": "HEAD",
  "version_stable": "3.95.6",
  "versioned_formulae": [],
  "why_use_this": "Trufflehog detects hardcoded secrets before they reach your repository or CI/CD pipeline, with built-in verification to reduce false positives. It integrates into pre-commit hooks and GitHub Actions, making it essential for teams that want to prevent credential leaks at source. Go-based single binary for fast, portable scanning."
}