بنقرة واحدة
secret-scanner
Pre-push API key and credential scanner - blocks git push if secrets found
التثبيت باستخدام Codex أو Claude انسخ هذا Prompt والصقه في Codex أو Claude أو مساعد آخر ليراجع صفحة Skill ويثبّتها لك.
القائمة
Pre-push API key and credential scanner - blocks git push if secrets found
التثبيت باستخدام Codex أو Claude انسخ هذا Prompt والصقه في Codex أو Claude أو مساعد آخر ليراجع صفحة Skill ويثبّتها لك.
استنادا إلى تصنيف SOC المهني
OpenAI Codex CLI + Claude Code (Hizir) birlikte kullanim rehberi. Is dagitim pattern'leri, GitHub Actions workflow ornekleri, review dongusu ve iki AI yazilim asistaninin guclu yanlarini birlestiren orchestration stratejileri.
Create handoff document for transferring work to another session
Otonom deney dongusu. Kod degisikligi yap, olc, karsilastir, kabul et veya geri al. Metrik bazli karar verme ile performans, boyut veya kalite optimizasyonu. Tek basina veya agent ile kullan.
Planning agent that creates implementation plans and handoffs from conversation context
Use this skill when writing new features, fixing bugs, or refactoring code. Enforces test-driven development with 80%+ coverage including unit, integration, and E2E tests.
Show how vibecosystem works - agents, skills, hooks, and self-learning pipeline.
| name | secret-scanner |
| description | Pre-push API key and credential scanner - blocks git push if secrets found |
| version | 1.0.0 |
| category | security |
| tags | ["secrets","api-keys","pre-push","git-hooks","security"] |
Scans your codebase for leaked API keys, tokens, and credentials. Blocks git push if secrets are found.
# Scan current directory
vibeco secrets
# Scan specific path
vibeco secrets /path/to/project
| Provider | Pattern | Example |
|---|---|---|
| OpenAI | sk-proj-..., sk-... | sk-proj-abc123... |
| Anthropic | sk-ant-... | sk-ant-api03-... |
| AWS | AKIA... | AKIAIOSFODNN7EXAMPLE |
| GitHub | ghp_..., gho_..., github_pat_... | ghp_xxxxxxxxxxxx |
| Stripe | sk_live_..., pk_live_... | sk_live_4eC39H... |
AIza... | AIzaSyDaGm... | |
| Slack | xoxb-..., xoxp-... | xoxb-123-456-abc |
| SendGrid | SG.... | SG.xxx.yyy |
| npm | npm_... | npm_xxxxxxxxxxxxx |
| PyPI | pypi-... | pypi-AgEIcHl... |
| Database URLs | postgres://, mongodb://, mysql://, redis:// | With embedded passwords |
| Private Keys | PRIVATE KEY----- | PEM format |
Add to your project's .git/hooks/pre-push:
#!/bin/bash
vibeco secrets "$(git rev-parse --show-toplevel)" || exit 1
Make it executable:
chmod +x .git/hooks/pre-push
Now every git push will scan for secrets first. If any are found, push is blocked.
.env file (add .env to .gitignore)process.env.API_KEY.ts .tsx .js .jsx .mjs .cjs .py .go .java .rb .php .rs .swift .kt .json .yml .yaml .toml .env .cfg .conf .ini .sh .bash .zsh .xml .properties .gradle