Maintain security for your Tailscale secrets automatically with TruffleHog

Tailscale has announced a new integration with Truffle Security's open-source secret scanning tool, TruffleHog, to enhance the security of its programmable network. This collaboration allows TruffleHog to scan for five types of Tailscale secrets—API keys, Pre-authentication keys, OAuth client secrets, SCIM keys, and webhook keys—across data sources, verify their activity status, and notify users to revoke them if necessary. The integration is part of Tailscale's commitment to a shared security model, ensuring that these keys remain secure within various infrastructure setups. This feature is available for both open-source and Enterprise versions of TruffleHog, with installation instructions provided in Truffle’s GitHub repository. For more detailed information, Tailscale and Truffle Security have shared insights about their collaboration in a dedicated blog post.