Update Trufflehog version with pre-commit

[noklam]

Context

We have been using Trufflehog for scanning security issue with the code base. They stopped update the Python version years ago but maintain a pre-commit hook that can be used.

Description

Replace the dependency with pre-commit hook instead.

Trufflehog stop releaseing Python Package years ago, they still have a pre-commit docker version maybe we should use this instead. https://docs.trufflesecurity.com/pre-commit-hooks

Yes, let's replace it!

Originally posted by @merelcht in #4005 (comment)

[ElenaKhaustova]

The issue here is that in order to run it locally with pre-commit we still need the package to be installed for entry https://github.com/trufflesecurity/trufflehog?tab=readme-ov-file#pre-commit-hook. Otherwise, we can run it only via docker but we probably don't want to make docker a requirement for local runs.

For CI, we can use GitHub Action: https://github.com/trufflesecurity/trufflehog?tab=readme-ov-file#octocat-trufflehog-github-action, but the most value comes from local runs to prevent committing credentials.

So we can use the maintained version from the repo at the CI but not locally. We can still make it a pre-commit hook with the current Trufflehog package, or maybe it makes sense to search for other packages to replace it.

[ElenaKhaustova]

After a discussion with the team, it was decided to replace trufflehog.

Considered alternatives for trufflehog:

• gitleaks - has the same installation problem as trufflehog
• detect-secrets - was selected as alternative.