token-analyzer 0.0.1

Fast, parallel token security analyzer - Detect exposed secrets, API keys, and sensitive tokens in your codebase
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18

# ⚠️ DEMO FILE - Contains fake secrets for testing purposes
# Never commit real .env files to version control!

# This will be detected as "Known prefix: OpenAI API Key"
API_KEY="sk-1234567890abcdefghijklmnopqrstuvwxyz"

# This would also be detected
DATABASE_URL="postgresql://admin:supersecretpassword@localhost:5432/mydb"

# Hugging Face token (known prefix)
HF_TOKEN="hf_abcdefghijklmnopqrstuvwxyz123456"

# AWS credentials (known prefix AKIA)
AWS_ACCESS_KEY_ID="AKIAIOSFODNN7EXAMPLE"
AWS_SECRET_ACCESS_KEY="wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMPLEKEY"

# GitHub token (known prefix ghp_)
GITHUB_TOKEN="ghp_xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx"