Skip to content

SailPoint Entro Command Line Interface (CLI)

Overview

The SailPoint Entro CLI provides on-demand secret-scanning and automation hooks developer workflows. Use it to scan files, directories, and commits changes for exposed secrets before code is merged or deployed. The CLI uploads scan inputs to SailPoint Entro’s scanner API for detection and returns a structured result set. For setup and detailed instructions, see the full guide: SailPoint Entro CLI & Pre-Commit hook

Use Cases

  • Pre-commit secret blocking for local developer workflows

  • On-demand scans from automation scripts and scheduled jobs

  • Local filesystem scan

High-Level Flow

Developer workstation / CI
   └──> Entro CLI (local) ──(HTTPS)──> Entro Scan API
                              └──> Detection engine
                                   └──> Results (JSON)

Security & Compliance

  • TLS 1.2+ for transport
  • AES-256 for data at rest
  • SOC 2 Type II
  • ISO 27001