Secret Detection Addition: HuggingFace Access Tokens

[chrisking]

Description

HuggingFace is the defecto leader in publishing and distributing models on the internet. User access to the platform is often configured through an access token that can be embedded in code like any other secret.

More information on User Access Tokens is here: https://huggingface.co/docs/hub/en/security-tokens

It would be great if Trivy detected these tokens and reported them.

Target

None

Scanner

Secret

[knqyf263]

Created #6262