ci(deps): bump trufflesecurity/trufflehog in the security-actions group (#810)

dependabot[bot] · web-flow · commit 67b162e65cde · 2026-04-07T10:12:38.000Z
Bumps the security-actions group with 1 update: [trufflesecurity/trufflehog](https://github.com/trufflesecurity/trufflehog). Updates `trufflesecurity/trufflehog` from 3.94.1 to 3.94.2 - [Release notes](https://github.com/trufflesecurity/trufflehog/releases) - [Commits](trufflesecurity/trufflehog@586f66d...6bd2d14) --- updated-dependencies: - dependency-name: trufflesecurity/trufflehog dependency-version: 3.94.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: security-actions ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
diff --git a/.github/workflows/security-scan.yml b/.github/workflows/security-scan.yml
@@ -51,7 +51,7 @@ jobs:
         run: (pnpm audit --production --json > audit-results.json) || echo '{}' > audit-results.json
 
       - name: Check for secrets
-        uses: trufflesecurity/trufflehog@586f66d7886cd0b037c7c245d4a6e34ef357ab10 # v3.94.1
+        uses: trufflesecurity/trufflehog@6bd2d14f7a4bc1e569fa3550efa7ec632a4fa67b # v3.94.2
         with:
           extra_args: --only-verified
 
