Summary
This gives you Gitleaks and detect-secrets configurations plus pre-commit hooks to catch leaked credentials before they hit your repo. You get regex patterns for AWS keys, GitHub tokens, Slack webhooks, private keys, and database connection strings, along with a TypeScript scanner you can customize. The CI workflow runs both Gitleaks and TruffleHog on every push, and there's a solid remediation checklist for when someone inevitably commits a secret anyway. The allowlist config is smart enough to ignore node_modules and example placeholders. If you've ever had to BFG a leaked API key out of git history at 2am, just install the pre-commit hooks now and save yourself the pain.
Install to Claude Code
npx -y skills add patricio0312rev/skills --skill secrets-scanner --agent claude-codeInstalls to .claude/skills
An agent that runs the SEO playbooks that move rankings and ships PRs you control.
Get founding access →
Connect Claude to +800M contacts, +150M companies. Find & Enrich leads in chat.
Try For Free →
Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →
On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →Files
SKILL.md
Select a file.
Featured
An agent that runs the SEO playbooks that move rankings and ships PRs you control.
Get founding access →Connect Claude to +800M contacts, +150M companies. Find & Enrich leads in chat.
Try For Free →Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →
