Overview
Simon Willison released scan-for-secrets 0.1, a Python tool that scans directories for API keys and other secrets to prevent accidental exposure in published logs. The tool can detect secrets even when they're encoded using common escaping schemes like JSON or backslash escaping.
Changes by Version
0.1
- Added scan directories for specified secrets with command-line interface
- Added detection of common secret encodings including backslash and JSON escaping
- Added configuration file support (~/.scan-for-secrets.conf.sh) for persistent secret lists
- Added integration with llm CLI tool for managing API keys
- Added AWS credentials scanning support