From ce84fac863a04e637f110d6c6bdab5869179dd04 Mon Sep 17 00:00:00 2001
From: "Jonathan D.A. Jewell" <6759885+hyperpolymath@users.noreply.github.com>
Date: Wed, 13 May 2026 21:09:36 +0100
Subject: [PATCH] ci(secret-scanner): drop duplicate --fail from trufflehog
 extra_args
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

The trufflehog GitHub action passes --fail automatically. Passing it
again via extra_args causes the binary to reject the flag with
`trufflehog: error: flag 'fail' cannot be repeated, try --help`.

Same fix as hypatia#227 — boj-server inherited the same template bug.
---
 .github/workflows/secret-scanner.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/secret-scanner.yml b/.github/workflows/secret-scanner.yml
index 843e901..8243257 100644
--- a/.github/workflows/secret-scanner.yml
+++ b/.github/workflows/secret-scanner.yml
@@ -21,7 +21,7 @@ jobs:
       - name: TruffleHog Secret Scan
         uses: trufflesecurity/trufflehog@6961f2bace57ab32b23b3ba40f8f420f6bc7e004 # v3
         with:
-          extra_args: --only-verified --fail
+          extra_args: --only-verified
 
   gitleaks:
     runs-on: ubuntu-latest