benchflow-ai / secrets-gitleaks

Install for your project team

Run this command in your project directory to install the skill for your entire team:

mkdir -p .claude/skills/secrets-gitleaks && curl -L -o skill.zip "https://fastmcp.me/Skills/Download/1403" && unzip -o skill.zip -d .claude/skills/secrets-gitleaks && rm skill.zip

New-Item -Path ".claude/skills/secrets-gitleaks" -ItemType Directory -Force; Invoke-WebRequest -Uri "https://fastmcp.me/Skills/Download/1403" -OutFile "skill.zip"; Expand-Archive -Path "skill.zip" -DestinationPath ".claude/skills/secrets-gitleaks" -Force; Remove-Item "skill.zip"

Project Skills

This skill will be saved in .claude/skills/secrets-gitleaks/ and checked into git. All team members will have access to it automatically.

Important: Please verify the skill by reviewing its instructions before using it.

Install skill for Codex

Run one of these commands to install the skill depending on your needs:

Project Local ($CWD/.codex/skills)

mkdir -p .codex/skills/secrets-gitleaks && curl -L -o skill.zip "https://fastmcp.me/Skills/Download/1403" && unzip -o skill.zip -d .codex/skills/secrets-gitleaks && rm skill.zip

New-Item -Path ".codex/skills/secrets-gitleaks" -ItemType Directory -Force; Invoke-WebRequest -Uri "https://fastmcp.me/Skills/Download/1403" -OutFile "skill.zip"; Expand-Archive -Path "skill.zip" -DestinationPath ".codex/skills/secrets-gitleaks" -Force; Remove-Item "skill.zip"

User Global (~/.codex/skills)

mkdir -p ~/.codex/skills/secrets-gitleaks && curl -L -o skill.zip "https://fastmcp.me/Skills/Download/1403" && unzip -o skill.zip -d ~/.codex/skills/secrets-gitleaks && rm skill.zip

New-Item -Path "$HOME/.codex/skills/secrets-gitleaks" -ItemType Directory -Force; Invoke-WebRequest -Uri "https://fastmcp.me/Skills/Download/1403" -OutFile "skill.zip"; Expand-Archive -Path "skill.zip" -DestinationPath "$HOME/.codex/skills/secrets-gitleaks" -Force; Remove-Item "skill.zip"

Scope	Location	Suggested Use
REPO	`$CWD/.codex/skills`	Project directory. Teams can check in skills most relevant to a working folder here.
REPO	`$CWD/../.codex/skills`	A folder above CWD. Organizations can check in skills relevant to a shared area.
REPO	`$REPO_ROOT/.codex/skills`	Top-most root folder. Relevant to everyone using the repository.
USER	`$CODEX_HOME/skills`	Personal folder (`~/.codex/skills`). Curate skills that apply to any repository.

Install skill for GitHub Copilot

Run one of these commands to install the skill depending on your needs:

Project (.github/skills)

mkdir -p .github/skills/secrets-gitleaks && curl -L -o skill.zip "https://fastmcp.me/Skills/Download/1403" && unzip -o skill.zip -d .github/skills/secrets-gitleaks && rm skill.zip

New-Item -Path ".github/skills/secrets-gitleaks" -ItemType Directory -Force; Invoke-WebRequest -Uri "https://fastmcp.me/Skills/Download/1403" -OutFile "skill.zip"; Expand-Archive -Path "skill.zip" -DestinationPath ".github/skills/secrets-gitleaks" -Force; Remove-Item "skill.zip"

Personal (~/.copilot/skills)

mkdir -p ~/.copilot/skills/secrets-gitleaks && curl -L -o skill.zip "https://fastmcp.me/Skills/Download/1403" && unzip -o skill.zip -d ~/.copilot/skills/secrets-gitleaks && rm skill.zip

New-Item -Path "$HOME/.copilot/skills/secrets-gitleaks" -ItemType Directory -Force; Invoke-WebRequest -Uri "https://fastmcp.me/Skills/Download/1403" -OutFile "skill.zip"; Expand-Archive -Path "skill.zip" -DestinationPath "$HOME/.copilot/skills/secrets-gitleaks" -Force; Remove-Item "skill.zip"

Scope	Location	Suggested Use
Project	`.github/skills/`	Repository-specific skills. Checked into git for the whole team.
Personal	`~/.copilot/skills/`	Personal skills available across all your projects.

Install skill for Google Antigravity

Run one of these commands to install the skill depending on your needs:

Workspace (.agent/skills)

mkdir -p .agent/skills/secrets-gitleaks && curl -L -o skill.zip "https://fastmcp.me/Skills/Download/1403" && unzip -o skill.zip -d .agent/skills/secrets-gitleaks && rm skill.zip

New-Item -Path ".agent/skills/secrets-gitleaks" -ItemType Directory -Force; Invoke-WebRequest -Uri "https://fastmcp.me/Skills/Download/1403" -OutFile "skill.zip"; Expand-Archive -Path "skill.zip" -DestinationPath ".agent/skills/secrets-gitleaks" -Force; Remove-Item "skill.zip"

Global (~/.gemini/antigravity/skills)

mkdir -p ~/.gemini/antigravity/skills/secrets-gitleaks && curl -L -o skill.zip "https://fastmcp.me/Skills/Download/1403" && unzip -o skill.zip -d ~/.gemini/antigravity/skills/secrets-gitleaks && rm skill.zip

New-Item -Path "$HOME/.gemini/antigravity/skills/secrets-gitleaks" -ItemType Directory -Force; Invoke-WebRequest -Uri "https://fastmcp.me/Skills/Download/1403" -OutFile "skill.zip"; Expand-Archive -Path "skill.zip" -DestinationPath "$HOME/.gemini/antigravity/skills/secrets-gitleaks" -Force; Remove-Item "skill.zip"

Scope	Location	Suggested Use
Workspace	`.agent/skills/`	Workspace-specific skills for project workflows and conventions.
Global	`~/.gemini/antigravity/skills/`	Personal skills available across all workspaces.

Hardcoded secret detection and prevention in git repositories and codebases using Gitleaks. Identifies passwords, API keys, tokens, and credentials through regex-based pattern matching and entropy analysis. Use when: (1) Scanning repositories for exposed secrets and credentials, (2) Implementing pre-commit hooks to prevent secret leakage, (3) Integrating secret detection into CI/CD pipelines, (4) Auditing codebases for compliance violations (PCI-DSS, SOC2, GDPR), (5) Establishing baseline secret detection and tracking new exposures, (6) Remediating historical secret exposures in git history.

Security

0 views

0 installs