I couldn't find anything comparable to Trufflehog for Docker images, even though I have constantly read articles about "secrets discovered in public images." So I built my own (hopefully) comparable tool.
But trufflehog supports docker images already? The trufflehog readme has examples[0]
# to scan from a remote registry
trufflehog docker --image trufflesecurity/secrets
# to scan from the local docker daemon
trufflehog docker --image docker://new_image:tag
# to scan from an image saved as a tarball
trufflehog docker --image file://path_to_image.tar
That aside, I just tested against trufflehog myself. It did take about 10-15%longer for a scan to complete but this is expected. Layerleak is scanning any additional or deleted tags found for the digest while trufflehog only scans the one. I am proud of the project, so I am showing it off. If you dont like, dont use :)
This is a cool idea. The stage-by-stage build makes the failure modes legible: first the loop, then tool dispatch, then persistence, then subagents/skills/compaction. A nice reminder that most of the magic is in state management and control flow
I wouldn't say most of the magic is there, but I do think a lot of the progress we've seen in the last few years has been external to the models, and people sometimes miss that. For example, Claude Code has improved by leaps and bounds because the tooling has improved so much, from what I can see. But the underlying model is still what makes this relatively simple tooling so useful.
Agreed. That's the core hypothesis behind this learning project — model is the magic, and the agent loop is just a thin, transparent wrapper around it. The goal of building it stage-by-stage was to prove you don't need a massive, complex framework to get good agentic behavior.
“Antimatter in a truck” is great headline material, but the actual advance is portable precision instrumentation.
CERN can make/store the antiprotons, but not measure them as cleanly as they want because the facility itself introduces tiny magnetic fluctuations. So this is really a story about moving the sample to a quieter lab, not moving toward sci-fi antimatter batteries... for now
It almost could be a Hollywood movie in the vein of Sorceror. Couple of grizzled CERN vets transporting a volatile load of antimatter across a post-apocalyptic wasteland while being chased by energy terrorists.
It is. The new meta is posting LLM comments, but then if called out post a human response. So it appears as if you were just mistaken, and this was always a human posting.
People should read the comment history more critically.
reply