Can it scan for patterns beyond standard .env files?

Yes, it scans for various sensitive patterns including .pem keys, service account JSON files, .npmrc configurations, and common credential naming conventions across your entire commit history.

How does the prevention mode work?

The prevent mode automates the configuration of .gitignore templates and sets up pre-commit hooks that scan your staged changes to block sensitive data before it is ever committed.

Does cleaning git history make my leaked secrets safe?

No, cleaning history only removes the data from the repository. You must rotate leaked credentials immediately because they may have been captured by scrapers or archive services the moment they were pushed.

What tools does this skill use to clean repository history?

The skill utilizes and provides commands for industry-standard tools like git-filter-repo and BFG Repo-Cleaner to ensure deep and permanent removal of sensitive files.

Git Safety & Secret Scanning

Name: Git Safety & Secret Scanning
Author: shipshitdev

byshipshitdev

•

Seguridad y Pruebas

Protects your source code by scanning git history for exposed credentials and removing sensitive data permanently.

Git Safety is a comprehensive security utility for Claude Code designed to identify, purge, and prevent the leakage of sensitive information within git repositories. It enables developers to perform deep history audits for API keys, .env files, and certificates, while providing automated workflows for cleaning history using industry-standard tools like git-filter-repo. Beyond remediation, it strengthens repository security by setting up robust prevention measures like pre-commit hooks and optimized .gitignore configurations to ensure secrets never reach your remote servers in the first place.

Características Principales

01Proactive prevention with pre-commit hooks and .gitignore setup

02Deep history scanning for credentials and sensitive file patterns

0310 GitHub stars

04Automated removal of secrets using git-filter-repo and BFG

05Platform-specific security guidance and audit logging

06Emergency response workflows for credential rotation and cleanup

Casos de Uso

01Performing a security audit on a repository before transitioning it to open source

02Removing a mistakenly committed .env file from the entire git history

03Setting up automated guardrails to prevent future secret leaks in team environments

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add shipshitdev/library git-safety

For use in Claude.ai and ChatGPT

Download Skill