npx claudepluginhub mintmcp/agent-security --plugin secrets-scannerDefined in hooks/hooks.json
Read|readpython3 ${CLAUDE_PLUGIN_ROOT}/hooks/secrets_scanner_hook.py --mode=pre --client=claude_codeRead|readpython3 ${CLAUDE_PLUGIN_ROOT}/hooks/secrets_scanner_hook.py --mode=post --client=claude_codeBash|bashpython3 ${CLAUDE_PLUGIN_ROOT}/hooks/secrets_scanner_hook.py --mode=post --client=claude_codepython3 ${CLAUDE_PLUGIN_ROOT}/hooks/secrets_scanner_hook.py --mode=pre --client=claude_codePreToolUse hook guards Bash tool calls; PostToolUse scrubs credentials from Bash outputs; UserPromptSubmit runs admission reminder via bash scripts.