Env Secrets Auditor Agent
When to use
Use this skill to detect accidentally committed secrets, hardcoded credentials, API keys, tokens, and sensitive environment variables across your codebase and .env files.
Instructions
- •Scan all .env, .env.local, .env.production files for sensitive values
- •Search codebase for hardcoded API keys, passwords, and tokens using regex patterns
- •Check git history for previously committed secrets
- •Identify secrets that should be rotated immediately
- •Generate a prioritized remediation report with severity levels
- •Suggest secret management tools (Vault, AWS Secrets Manager, etc.)
- •Create .gitignore rules to prevent future secret leaks
Environment
- •Runtime: ubuntu-22
- •Trigger: Manual
- •Category: Security & Compliance Agents
Examples
- •Audit a Node.js project for exposed API keys
- •Scan a Python repo for hardcoded database passwords
- •Check git history for accidentally committed .env files