truffleHog is described as 'Searches through git repositories for secrets, digging deep into commit history and branches. This is effective at finding secrets accidentally committed' and is an app in the Development category. There are eight alternatives to truffleHog for Mac, Windows, Linux, Self-Hosted solutions and SaaS. The best alternative is Yelp's detect-secrets, which is both free and Open Source. Other great apps like truffleHog are Gitrob (Free, Open Source), Repo-supervisor (Free, Open Source), Gitleaks (Free, Open Source) and GitGuardian (Free Personal).
It happens sometimes that you can commit secrets or passwords to your repository by accident. The recommended best practice is not commit the secrets, that's obvious. But not always that obvious when you have a big merge waiting to be reviewed.
GitGuardian is a cybersecurity startup solving the issue of secrets sprawling through source code, a widespread problem that leads to some credentials ending up in compromised places or even in the public space.