secrets-detection

Audits projects for secrets in source control using Gitleaks, ensuring security by detecting sensitive information in code repositories.

Install this skill

87/100

Security score

The secrets-detection skill was audited on Jun 4, 2026 and we found 5 security issues across 3 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 147

Template literal with variable interpolation in command context

SourceSKILL.md

147

```yaml

medium line 240

Webhook reference - potential data exfiltration

SourceSKILL.md

240	- High — real secret with limited access (API tokens, webhook

low line 230

Access to .env file

SourceSKILL.md

230	\| `.env.production` \| AWS access key ID detected \| Critical \| Rotate key, remove file, add to `.gitignore` \|

low line 262

Access to .env file

SourceSKILL.md

262	bfg --delete-files .env.production

low line 266

Access to .env file

SourceSKILL.md

266	git filter-repo --invert-of --path .env.production

Scanned on Jun 4, 2026

View Security Dashboard

Installation guide →

GitHub Stars 34

Rate this skill

Categorydevelopment

UpdatedJune 15, 2026

openclaw backend devops-sre security-engineer backend-developer development

Habitat-Thinking/ai-literacy-superpowers