Hook

Post-Edit Secrets Scan

Block writes that contain hardcoded API keys or placeholders.

0
Source

Install

manual
add to ~/.claude/settings.json hooks.PostToolUse

Add this to your Claude Code MCP settings or run via the CLI.

About

PostToolUse hook on Edit/Write. Pattern-matches against AWS keys, OpenAI tokens, sk- prefixes, and "your-api-key-here" placeholders.

Common use cases

  • Block secret leaks
  • Catch placeholder strings
  • Pre-commit safety net

Tags

securitysecretsautomation