How does this skill prevent secret leaks?

It helps configure GitHub's native push protection, which scans commits in real-time and blocks the push if it detects known high-confidence secrets.

Can I define my own secret patterns?

Yes, this skill includes functionality for defining custom pattern definitions using regex to catch internal or proprietary tokens specific to your organization.

What happens if a secret is already in the repository history?

The skill provides response playbooks that guide you through the process of rotating the compromised credential and removing it from the Git history.

Does it work with GitHub Actions?

Yes, the skill specifically focuses on protecting credentials within GitHub Actions workflows and logs where secrets are often accidentally exposed.

Is this skill limited to public repositories?

No, while GitHub offers secret scanning for all public repositories, this skill also assists in configuring it for private repositories where advanced security features are enabled.

GitHub Secret Scanning Integration

Name: GitHub Secret Scanning Integration
Author: adaptive-enforcement-lab

byadaptive-enforcement-lab

0•

Seguridad y Pruebas

Automates the configuration of GitHub secret scanning and push protection to prevent sensitive credential leaks in development workflows.

The Secret Scanning Integration skill provides a comprehensive framework for securing GitHub repositories against credential exposure. It enables Claude to configure native GitHub secret scanning, establish push protection barriers, and define custom regex patterns for proprietary security tokens. By integrating these safeguards directly into GitHub Actions workflows, the skill helps teams move from reactive cleanup to proactive prevention, offering structured response playbooks to mitigate damage if a leak occurs. It is an essential tool for maintaining high security standards and protecting cloud infrastructure and API integrations from unauthorized access.

Características Principales

01Automated push protection implementation

02Secure GitHub Actions workflow auditing

03Standardized response playbooks for detected leaks

04Native GitHub secret scanning configuration

05Custom secret pattern definition and regex matching

060 GitHub stars

Casos de Uso

01Automating the remediation process for secrets exposed in CI/CD logs

02Preventing developers from accidentally committing API keys or cloud credentials

03Implementing custom detection for proprietary internal company tokens

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add adaptive-enforcement-lab/claude-skills secret-scanning-integration

For use in Claude.ai and ChatGPT

Download Skill