From secret-scanner
Scans codebases for exposed API keys, passwords, tokens, and private keys using pattern matching and entropy analysis. Generates reports with file locations and remediation guidance.
How this skill is triggered — by the user, by Claude, or both
Slash command
/secret-scanner:scanning-for-secretsThis skill is limited to the following tools:
The summary Claude sees in its skill listing — used to decide when to auto-load this skill
Detect exposed API keys, passwords, tokens, and private keys in source code using pattern matching and entropy analysis, with remediation guidance for each finding.
Detect exposed API keys, passwords, tokens, and private keys in source code using pattern matching and entropy analysis, with remediation guidance for each finding.
scan your codebase for exposed secrets, API keys, passwords, and other sensitive credentials. It helps you identify and remediate potential security vulnerabilities before they are committed or deployed.
secret-scanner plugin.This skill activates when you need to:
User request: "Scan for AWS keys in the codebase"
The skill will:
secret-scanner plugin.User request: "Check for exposed credentials in config files"
The skill will:
secret-scanner plugin.database.yml, .env) for password patterns.secret-scanner into your pre-commit hooks to prevent committing secrets.This skill can be integrated with other security tools, such as vulnerability scanners, to provide a comprehensive security assessment of your codebase. It can also be combined with notification plugins to alert you when new secrets are detected.
If security scanning fails:
npx claudepluginhub fleet-to-force/claude-code-plugins-plus --plugin secret-scanner5plugins reuse this skill
First indexed Jul 10, 2026
Detects exposed secrets, API keys, and credentials in code using pattern matching and entropy analysis. Trigger with 'scan for secrets' or 'find exposed keys'.
Detects API keys, passwords, tokens, and other secrets in source code using pattern matching and entropy analysis. Scan directories or specific paths for leaked credentials.
Scans source code and git history for hardcoded secrets, API keys, passwords, credentials using gitleaks, detect-secrets, grep patterns. Categorizes risks and suggests prevention like pre-commit hooks.