Can I use this for pre-commit checks?

Absolutely. It is designed for proactive scanning before committing changes to ensure no sensitive credentials are leaked to your version control system.

What types of secrets can this skill detect?

It detects AWS keys, Google Cloud credentials, database passwords, private SSH/PGP keys, and high-entropy strings commonly found in config files.

Does it suggest how to fix discovered leaks?

Yes, for every identified secret, the skill provides specific remediation steps, such as moving credentials to environment variables or revoking the compromised key.

How does it find secrets that don't match known patterns?

It uses entropy analysis to flag high-randomness strings that often indicate unique tokens, passwords, or keys not covered by standard regex patterns.

Secret Scanner & Security Audit

Name: Secret Scanner & Security Audit
Author: jeremylongshore

byjeremylongshore

•

884

Security & Testing

Scans codebases for exposed secrets, API keys, and credentials to prevent security vulnerabilities before deployment.

About

This skill empowers Claude to perform automated security audits by identifying sensitive information such as AWS keys, database passwords, and private SSH keys within your source code. By utilizing both pattern matching and entropy analysis, it helps developers detect accidental leaks before they reach version control, providing detailed reports and actionable remediation steps to maintain a secure development environment.

Key Features

Deep scanning of configuration files and environment templates
Detailed vulnerability reporting with file location mapping
Actionable remediation guidance for revoking and rotating keys
Pattern-based detection for major cloud providers (AWS, GCP, Azure)
Entropy analysis to identify non-standard high-randomness secrets
884 GitHub stars

Use Cases

Validating configuration files for sensitive plain-text data
Pre-commit security scanning to prevent credential leaks to GitHub
Auditing legacy repositories for hardcoded passwords and API keys

About

Key Features

Deep scanning of configuration files and environment templates
Detailed vulnerability reporting with file location mapping
Actionable remediation guidance for revoking and rotating keys
Pattern-based detection for major cloud providers (AWS, GCP, Azure)
Entropy analysis to identify non-standard high-randomness secrets
884 GitHub stars

Use Cases

Validating configuration files for sensitive plain-text data
Pre-commit security scanning to prevent credential leaks to GitHub
Auditing legacy repositories for hardcoded passwords and API keys