Secret ScannerInstallation
Installation
Install and set up the secret scanner in your project.
Installation
Package Managers
npm
npm install @visulima/secret-scanneryarn
yarn add @visulima/secret-scannerpnpm
pnpm add @visulima/secret-scannerThe right prebuilt native binary is pulled in automatically via optionalDependencies.
Supported platforms
| OS | Arch | libc |
|---|---|---|
| macOS | x64 | — |
| macOS | arm64 | — |
| Linux | x64 | glibc / musl |
| Linux | arm64 | glibc / musl |
| Windows | x64 | MSVC |
| Windows | arm64 | MSVC |
Requirements
- Node.js: 22.13 or higher.
- No Go / gitleaks / Rust toolchain required at install time — the platform-matched prebuilt binary is downloaded from npm.
First scan
import { scan } from "@visulima/secret-scanner";
const findings = await scan([process.cwd()]);
if (findings.length > 0) {
console.warn(`Found ${String(findings.length)} potential secret(s).`);
}If you prefer a CLI, install @visulima/vis and run vis secrets.