diff --git a/exclude-patterns.txt b/exclude-patterns.txt
new file mode 100644
index 0000000..1867b3a
--- /dev/null
+++ b/exclude-patterns.txt
@@ -0,0 +1,29 @@
+resources/js/app.js
+resources/vendor
+(.*/)?autoload.php
+sample.env
+# Library Folders
+node_modules
+(.*/)?node_modules/
+vendor
+(.*/)?vendor/
+# Lock Files are not always in the root
+.*composer.lock
+.*package.json
+.*package-lock.json
+.pnp.js
+.*Pipfile.lock
+.*yarn.lock
+# Ignore inline images
+.*\.css$
+.*\.scss$
+.*\.ico$
+.*\.jpg$
+.*\.png$
+.*\.svg$
+# Ignore uploaded logs
+.*\.log$
+# Frontend Build Files
+build
+data
+public/js/app.js
diff --git a/tartufo.toml b/tartufo.toml
new file mode 100644
index 0000000..9d429b5
--- /dev/null
+++ b/tartufo.toml
@@ -0,0 +1,10 @@
+[tool.tartufo]
+exclude-paths="./exclude-patterns.txt"
+repo-path = "."
+default-regexes = true
+json = false
+regex = true
+entropy = true
+exclude-signatures = [
+  "402ec8e908f251b4d651f9c871e83544d326ec5d8c1d3ae481ba768e53e4616d",
+]