ghost-scan-secrets
Ghost Security - Secrets and credentials scanner. Scans codebase for leaked API keys, tokens, passwords, and sensitive data. Detects hardcoded secrets and generates findings with severity and remediation guidance. Use when the user asks to check for leaked secrets, scan for credentials, find hardcoded API keys or passwords, detect exposed .env values, or audit code for sensitive data exposure.
Packaged view
This page reorganizes the original catalog entry around fit, installability, and workflow context first. The original raw source lives below.
Install command
npx @skill-hub/cli install ghostsecurity-skills-scan-secrets
Repository
Skill path: plugins/ghost/skills/scan-secrets
Ghost Security - Secrets and credentials scanner. Scans codebase for leaked API keys, tokens, passwords, and sensitive data. Detects hardcoded secrets and generates findings with severity and remediation guidance. Use when the user asks to check for leaked secrets, scan for credentials, find hardcoded API keys or passwords, detect exposed .env values, or audit code for sensitive data exposure.
Open repositoryBest for
Primary workflow: Analyze Data & AI.
Technical facets: Full Stack, Backend, Data / AI, Security.
Target audience: Development teams looking for install-ready agent workflows..
License: Unknown.
Original source
Catalog source: SkillHub Club.
Repository owner: ghostsecurity.
This is still a mirrored public skill entry. Review the repository before installing into production workflows.
What it helps with
- Install ghost-scan-secrets into Claude Code, Codex CLI, Gemini CLI, or OpenCode workflows
- Review https://github.com/ghostsecurity/skills before adding ghost-scan-secrets to shared team environments
- Use ghost-scan-secrets for development workflows
Works across
Favorites: 0.
Sub-skills: 0.
Aggregator: No.