apikeyscanner
Local secret leak detection for developers.
A lightweight Python library and CLI tool for detecting exposed API keys, passwords, tokens, and insecure secrets before deployment. Maintain high-trust security by scanning your local codebase automatically.
bash — apikeyscanner
$apikeyscanner scan .
Scanning local workspace...
[HIGH RISK]src/auth/config.py:12
Pattern: AWS_SECRET_ACCESS_KEY detected.
[MEDIUM RISK].env.example:4
Pattern: POSTGRES_PASSWORD detected.
Scan Failed: 2 secrets identified. Deployment blocked.
Pre-commit ready
Integrated hooks to scan staged changes before they ever hit your local git history.
100+ patterns
Vast library of regex and entropy checks for major cloud providers, SaaS APIs, and databases.
CI/CD optimized
Zero-dependency installation makes it perfect for GitHub Actions, GitLab CI, and Jenkins.
i
Local First Security
Scanning occurs locally on your machine. Your source code and identified secrets never leave your filesystem.