Detect hardcoded secrets, exposed API keys, and credential misconfigurations in IaC and config files
Data sourced from ClawHub. View on ClawSkills
What Secrets Scanner can do for your AI workflow
Detect hardcoded secrets, directly from your Claude conversation
Works across Claude, Cursor, OpenClaw — install once, use everywhere
One-command installation — no complex setup required
Combine with other skills to build powerful multi-step AI workflows
Try these prompts with your AI agent after installing Secrets Scanner
Help me get started with Secrets Scanner
Explains what Secrets Scanner does, walks through the setup, and runs a quick demo based on your current project
Use Secrets Scanner to detect hardcoded secrets, exposed API keys, and credential misconfi...
Invokes Secrets Scanner with the right parameters and returns the result directly in the conversation
What can I do with Secrets Scanner in my developer & devops workflow?
Lists the top use cases for Secrets Scanner, with example commands for each scenario
Guides & tutorials for AI skills
The 7 AI Skills Every Software Developer Should Have Installed in 2026
After testing dozens of developer-focused AI skills, these are the seven that have proven genuinely useful across different tech stacks and workflows — not just impressive demos, but tools that hold up under daily use.
MCP Skills vs Native Claude Tools: What's the Difference and When to Use Each
Claude comes with built-in capabilities, but MCP skills extend it in ways the base model can't. Here's a clear breakdown of what each type of tool is good for, with real examples of when to reach for a skill versus relying on Claude's native abilities.
Secrets Scanner extends your AI assistant with the ability to detect hardcoded secrets, exposed API keys, and credential misconfigurations in IaC and config files. Rather than leaving your conversation to handle this manually, you can ask your Claude agent directly — and it will take care of the task end-to-end, using Secrets Scanner as its underlying capability.
Secrets Scanner works across Claude, Cursor, OpenClaw through the Model Context Protocol (MCP) — an open standard that lets AI clients share tools and skills without lock-in. Because MCP is platform-agnostic by design, you install Secrets Scanner once and it becomes available across all your AI clients. Whether you're working in Claude for focused sessions or Cursor for integrated workflows, the skill behaves consistently.
To install Secrets Scanner, copy the skill folder to `~/.claude/skills/secrets-scanner/` for use across all your projects, or `.claude/skills/secrets-scanner/` for a single project. Restart Claude and the skill is immediately active — invoke it with `/secrets-scanner` or just describe your goal and the AI will pick it up automatically.
Secrets Scanner has 400 installs and is part of the growing Developer & DevOps skill ecosystem on DiscoverAISkills. The source code is open on GitHub — you can inspect it, contribute fixes, or fork it to adapt the skill for your specific setup. Like all skills on DiscoverAISkills, it is free to install and use. The broader AI skills ecosystem continues to expand as developers contribute new capabilities across categories like developer tools, data analysis, writing, automation, and more.
Place the skill folder at ~/.claude/skills/secrets-scanner/ for personal use (all projects), or .claude/skills/secrets-scanner/ for project-specific use. Restart your AI client, then invoke with /secrets-scanner or let the AI discover it automatically.
Secrets Scanner supports Claude, Cursor, OpenClaw. It integrates seamlessly with these AI platforms to extend their capabilities.
Secrets Scanner is free to install. Check the repository for licensing information.
Detect hardcoded secrets, exposed API keys, and credential misconfigurations in IaC and config files
Secrets Management
Securely store, manage, rotate, and integrate secrets (API keys, passwords, certificates) in CI/CD pipelines using Vault, AWS Secrets Manager, and native tools.
Config Security Scanner
Security expert for OpenClaw deployments. Audits local configuration files for vulnerabilities in network settings, channel policies, and tool permissions. P...
Scanner
Transform document photos into clean scanned-looking pages with automatic edge detection, cropping, and perspective correction. Use when (1) the user wants a...
Select your agent
Option 1: Install via CLI (recommended)
Recommended (no pre-install needed)
npx clawhub@latest --dir ~/.claude/skills install secrets-scannerOr via clawhub CLI (if already installed)
clawhub --dir ~/.claude/skills install secrets-scanner⚠️ Requires Node.js 18+. No Node? Use Option 2 below to download the ZIP instead. Install Node.js →
Option 2: Manual install (no Node required)
Download the ZIP, extract it, and place the folder at the path below. Restart your agent to activate.
Install path
~/.claude/skills/secrets-scanner/💡Extract and place the folder at the path above, then restart your agent.
Automate my developer & devops tasks using Secrets Scanner
Identifies repetitive steps in your workflow and sets up Secrets Scanner to handle them automatically
Secrets Scanner is categorized under Developer & DevOps. These skills help AI agents perform specialized tasks in this domain.