Markdown output format #4650

dasmfm · 2026-01-08T14:13:51Z

Description:

Basic support for Markdown output.
For now there are hardcoded fields, but in the future it could be easily extended.

Checklist:

Tests passing (make test-community)?
Lint passing (make lint this requires golangci-lint)?

CLAassistant · 2026-01-08T14:13:58Z

All committers have signed the CLA.

Added line number and hasLine fields to markdownRow. Updated Print method to handle line number and sanitization.

pkg/output/markdown.go

main.go

pkg/output/markdown.go

rosecodym · 2026-01-29T14:31:13Z

Hey @dasmfm - thanks for taking the time to contribute to the project! Unfortunately, we have some concerns about the specificity of this PR. Markdown output is cool, but this implementation is tailored for filesystem output, and will generate deficient output if other sources are scanned instead.

It also seems like markdown could be generated from generated JSON (by a separate postprocessor), which would allow for more generality and eliminate the need to change TruffleHog itself. This seems to us like a preferable solution. I don't know what your use case is - did you consider something like that? Would it work for you?

pkg/output/markdown.go

cursor · 2026-01-29T15:34:29Z

pkg/tui/pages/source_configure/trufflehog_configure.go

+	if isTrue(inputs["markdown"].Value) {
+		command = append(command, "--markdown")
+	} 
+


TUI allows conflicting output format flags simultaneously

Low Severity

The TUI configuration allows users to enable both --markdown and --json output formats simultaneously without any validation or warning. When both are enabled, the Cmd() function appends both flags to the command, but main.go's switch statement checks *jsonOut before *markdownOut, causing JSON to silently take precedence. Users enabling both options may unexpectedly receive JSON output instead of the Markdown they also selected.

Additional Locations (1)

pkg/tui/pages/source_configure/trufflehog_configure.go#L63-L64

It's common pattern for all printers. If neccesary, should be fixed in separate PR.

pkg/output/github_actions.go

cursor

Cursor Bugbot has reviewed your changes and found 1 potential issue.

^{Bugbot Autofix is OFF. To automatically fix reported issues with Cloud Agents, enable Autofix in the Cursor dashboard.}

cursor · 2026-01-29T16:08:43Z

pkg/output/markdown.go

+
+	if !hasFile {
+		file = "n/a"
+	}


Redundant fallback already handled by helper function

Low Severity

The check if !hasFile { file = "n/a" } is redundant. The extractFileLine function in helpers.go already initializes file to "n/a" as its default value (line 9), and only updates it when a file is actually found. When hasFile is false, file is already "n/a", making this conditional assignment unnecessary.

dasmfm requested a review from a team January 8, 2026 14:13

Markdown output format

550fbc2

dasmfm force-pushed the main branch from adaae96 to 550fbc2 Compare January 8, 2026 14:20

dasmfm added 10 commits January 9, 2026 18:44

Merge branch 'trufflesecurity:main' into main

1344e5f

Merge branch 'main' into main

f748149

Merge branch 'main' into main

37926ab

Enhance MarkdownPrinter with line number handling

2ed3217

Added line number and hasLine fields to markdownRow. Updated Print method to handle line number and sanitization.

Merge branch 'main' into main

3224270

Merge branch 'main' into main

4c2a879

Merge branch 'main' into main

8af9543

Merge branch 'main' into main

bf80503

Merge branch 'main' into main

904e72f

Merge branch 'main' into main

c531c2b

cursor bot reviewed Jan 28, 2026

View reviewed changes

pkg/output/markdown.go Show resolved Hide resolved

main.go Show resolved Hide resolved

pkg/output/markdown.go Show resolved Hide resolved

Merge branch 'main' into main

cfa382d