From c5c24ddea21e1cfecd61dbdf8cb7ec59a70d5cc4 Mon Sep 17 00:00:00 2001
From: Nolan Gregory <65730528+nulzo@users.noreply.github.com>
Date: Thu, 26 Oct 2023 20:14:40 -0500
Subject: [PATCH] Trufflehog security scanner

---
 .github/workflows/bandit.yml | 18 ++++++++++++++++--
 1 file changed, 16 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/bandit.yml b/.github/workflows/bandit.yml
index ffc9f0b..b88a60d 100644
--- a/.github/workflows/bandit.yml
+++ b/.github/workflows/bandit.yml
@@ -1,4 +1,4 @@
-name: Bandit Security Scan
+name: Security Scanning
 
 on:
     push:
@@ -42,4 +42,18 @@ jobs:
       with:
         name: bandit-report
         path: output/bandit-report.txt
-        
\ No newline at end of file
+
+  truffle_scan:
+    name: Truffle Key Scanner
+    runs-on: ubuntu-latest
+    steps:
+    - name: Checkout
+      uses: actions/checkout@v4
+      with:
+        fetch-depth: 0
+    - name:
+      uses: trufflesecurity/trufflehog@main
+      with:
+        path: ./
+        base: ${{ github.event.repository.default_branch }}
+        head: HEAD