GitHub Secrets Scanner

GitHub Secrets Scanner

Secrets scanner for GitHub repositories public and private (with token):

n
• Regex engine — 150+ patterns for detect: AWS keys, GCP service accounts, Azure tokens, Slack webhooks, database connection strings, JWT secrets, private SSH keys.
n
• Analysis of historial — Escanea all the commits, no only el HEAD. The secrets deletesdos in commits posteriores siguen siendo detectsdos.
n
• Org-wide scan — Dado a name of organization, enumerates all the repos public and the scans.
n
• Validation — For AWS keys and algunos tokens, intenta validatesr si siguen activos (optional, generates traffic toward the provider).
n
• Reporting — Output in JSON and HTML with severity, file, line, commit hash, and fecha.
n