Scan codebase for exposed secrets
2700-scan-secrets_2084d9d6skillsetup L2★4
tools-only/X-Skills ↗What it does
Scan codebase for exposed secrets and credentials
Best for
Detecting hardcoded API keys before committing to version control.
Inputs
- · Codebase directory
- · Git history
Outputs
- · Secret exposure report with severity
Requires
- · Secret scanning engine
- · Git history inspector
Preconditions
- · Read access to codebase
Failure modes
- · High false positives
- · Obfuscated secrets missed
Trust signals
- · Pattern matching for cloud providers
- · Entropy analysis
- · Git history scanning