Scan a blob of code/text/diff for LEAKED SECRETS before you commit or share — API keys (AWS, GitHub, OpenAI, Stripe, Google, Slack…), tokens, private keys (RSA/EC/SSH/PGP), DB connection strings, .env dumps, JWTs and high-entropy strings. MCP server + pay
Verification confirms publisher identity (repo ownership), not code safety. The security scan covers known CVEs and suspicious install scripts — it cannot prove the absence of malicious code.
Scan a blob of code/text/diff for LEAKED SECRETS before you commit or share — API keys (AWS, GitHub, OpenAI, Stripe, Google, Slack…), tokens, private keys (RSA/EC/SSH/PGP), DB connection strings, .env dumps, JWTs and high-entropy strings. MCP server + pay