Secret Scanner
Scan your codebase for leaked secrets, API keys, and credentials using pattern matching combined with AI analysis to detect security vulnerabilities before deployment.
🚀 Secret Scanner automatically detects leaked secrets, API keys, and credentials hidden in your codebase. Using pattern matching combined with AI analysis, it finds hardcoded tokens from AWS, Stripe, GitHub, and more—catching what you might miss before pushing to production.
💡 Perfect for securing your code before commits, running security audits, setting up CI/CD pipelines, or onboarding teams. Install globally with one command and scan any directory instantly—no configuration needed.
✨ Part of LXGIC's 110+ free developer tools. Zero paywalls, zero sign-ups. MIT licensed and open source.
Requirements
Required for AI-powered secret detection (optional, can run pattern-matching only)
Runtime environment for running the scanner