What repo can we scan for you today?

Scan, clean, and prevent leaked secrets in your codebase, team’s logs, build environments, repos & CI pipelines.

npx securelog-scan scan

README

sls.config.yml

detectors:

# paystack:

# regex: "\\bsk\\_[a-z]{1,}\\_[A-Za-z0-9]{40}\\b" # keywords: ["paystack"] # detectorType: "Paystack"

exclude:

paths:

# - "node_modules" # - "dist" # - ".git"

extensions:

# - ".png" # - ".jpg" # - ".log"

Scan

For whatever you build.

Scan your codebase, logs, build environments, repos, and CI pipelines for leaked secrets and API tokens.

npm i -g securelog-scan

README

sl.ts

import SecureLog from 'securelogs';

new SecureLog(); // For JS projects, use new SecureLog.default()

console.log('secret', process.env.AWS_ACCESS_KEY_ID); // Securelog: ************ is a valid secret for the key: AWS_ACCESS_KEY_ID

Logs

For cleanlogs.

Detect and prevent leaking secrets and API tokens into your logs. Keep secrets secret.

npm i securelogs

README

sl-rsc.ts

import{ SecureLog } from "securelog-rsc";

const App = () => {

return( <SecureLog onSecretFound={(secret) => console.log("Secret found:", secret)}><div> My Stripe key is sk_test_******************** </div></SecureLog>);

};

export default App;

RSC

For react servercomponent.

Scrub to detect and prevent leaking sensitive data to the client from your hybrid components.

npm i securelog-rsc

README

: Github action
Securelog allows you to run the to scan your codebase for secrets via Github actions. Secrets detection for Github.
readme
: Gitlab CI
Securelog allows you to run the to scan your codebase for secrets via Github CI. Secrets detection for Gitlab.
readme
: Bitbucket pipelines
Securelog allows you to run the to scan your codebase for secrets via Bitbucket pipeline. Secrets detection for Bitbucket.
readme
: Secrets in LLM code
Securelog can help you parse your inputs before sending to LLMs to make sure you are not sending texts with actual secrets.
readme

Analyze and keep secrets secret with ease.

Securelog is an secure open-source secret and API token analyzer that verifies, scans, cleans, and prevents leakage in your workflow.

Get a demo for enterprise