No Secret Scan is a Python script designed to scan GitHub and GitLab repositories for potential secrets such as API keys, tokens, passwords, and more. The script uses regular expressions to identify these secrets within the repository files and provides a comprehensive report of any findings.
- Supports GitHub and GitLab: Choose between scanning a GitHub or GitLab repository.
- Customizable Secret Patterns: Define your own regular expressions to identify specific types of secrets.
- Progress Indicator: See the progress of the scan in real-time using the tqdm library.
- etailed Report: Get a detailed report of all found secrets, including the file path and the secret itself.
-
Clone the repository: -- git clone https://github.com/Masriyan/no-secret-scan.git -- cd no-secret-scan
-
Install the required libraries: -- pip install requests tqdm
-
Run the script: -- python no_secret_scan.py
-
Follow the prompts: -- Select the repository type (GitHub or GitLab). -- Enter the URL of the repository you want to scan. -- Provide your access token.
This project is licensed under the MIT License - see the LICENSE file for details.
- Fork the repository.
- Create your feature branch (git checkout -b feature/awesome-feature).
- Commit your changes (git commit -m 'Add some awesome feature').
- Push to the branch (git push origin feature/awesome-feature).
- Open a pull request.
-- Inspired by various secret scanning tools and methodologies.