Scan files, configs, or text for leaked secrets and risky misconfigurations.
Copy the install command and let the AI configure it · recommended for beginners
Please install the "tools.knurl/secret-scanner" MCP server from askskill: Run: claude mcp add --transport http 'tools-knurl-secret-scanner' 'https://mcp.knurl.tools/mcp'
Scan the following .env and config snippet for exposed secrets, tokens, passwords, and obviously unsafe settings. List findings by severity and include remediation advice: DB_PASSWORD=admin123 AWS_SECRET_ACCESS_KEY=abcd1234example DEBUG=true ALLOWED_HOSTS=*
A list of detected secrets and misconfigurations with risk notes and fix recommendations.
Review this code and configuration before commit. Identify hardcoded credentials, test keys, webhook URLs, or other security issues, and explain how to replace or remove them.
A report of suspicious sensitive values, where they appear, why they are risky, and cleanup steps before committing.
Scan this log, terminal output, or document text for exposed API keys, access tokens, connection strings, and common insecure settings. Return only the findings and remediation suggestions.
A concise summary of exposed secrets and configuration risks found in the text for immediate action.
Scan code secrets, verify live keys, and rewrite them to env vars.
Scan code and text for leaked secrets and exposed API credentials.
Scan Python projects and GitHub repos for vulnerabilities, secrets, and AI risk insights.
Scan project risks and quality issues with a health score and fixes.
Scan Claude Code configs for vulnerabilities, misconfigurations, and prompt injection risks.
Scan binary artifacts for sensitive strings and detect telemetry leak risks.