safe-repo

Check for sensitive data in repository. Use when user asks to "check for sensitive data", "/safe-repo", or wants to verify no company/credential data is in the repository. Don't use for general code review, adding .gitignore entries, or scanning non-git directories.

Safety Notice

This listing is imported from skills.sh public index metadata. Review upstream SKILL.md and repository scripts before running.

Copy this and send it to your AI assistant to learn

Install skill "safe-repo" with this command: npx skills add helderberto/skills/helderberto-skills-safe-repo

Safe Repository Check

Context

Security audit for sensitive data in repository. Check for credentials, API keys, company-specific information, and PII.

Workflow

  1. Run bash scripts/scan-secrets.sh to scan all tracked files for credential patterns (see references/patterns.md for full pattern list)
  2. Check for sensitive tracked files (.env, secrets)
  3. Analyze git history for removed secrets
  4. Review .gitignore for proper patterns
  5. Report findings (see assets/report-template.md)

Rules

  • Only check git-tracked files (git ls-files) - ignore local configs
  • Check current tracked files AND git history
  • Filter false positives: minified JS, node_modules, test fixtures, docs
  • Verify .gitignore covers sensitive patterns
  • Report tracked files with secrets and historical commits
  • Never output actual secret values in report

Error Handling

  • If git ls-files returns nothing → verify the current directory is a git repository; run git status to confirm
  • If git history scan is slow → limit to last 100 commits with git log --oneline -100
  • If false positives are high → cross-reference against patterns in references/patterns.md before reporting

Source Transparency

This detail page is rendered from real SKILL.md content. Trust labels are metadata-based hints, not a safety guarantee.

Open in GitHubOpen in ClawHub

Related Skills

Related by shared tags or category signals.

Coding

explain-code

No summary provided by upstream source.

Repository SourceNeeds Review
6-helderberto
Coding

code-review

No summary provided by upstream source.

Repository SourceNeeds Review
5-helderberto
Security

audit-deps

No summary provided by upstream source.

Repository SourceNeeds Review
16-helderberto
General

ship

No summary provided by upstream source.

Repository SourceNeeds Review
15-helderberto