Metadata-Version: 2.4
Name: githush
Version: 0.1.2
Summary: A CLI tool to scan repositories for secrets
Author-email: Alessio Piccione <alessio.piccione@hotmail.it>
License: MIT
License-File: LICENSE
Requires-Python: >=3.12
Requires-Dist: click>=8.0
Requires-Dist: mypy>=1.15
Requires-Dist: pygit2>=1.17
Requires-Dist: pyyaml>=6.0
Provides-Extra: dev
Requires-Dist: pytest>=8.0; extra == 'dev'
Provides-Extra: lint
Requires-Dist: ruff>=0.11; extra == 'lint'
Description-Content-Type: text/markdown

# Githush

**Githush** is a CLI tool that scans repositories for exposed secrets and prevents unsafe commits using Git hooks and CI/CD pipelines.

---

## 🚀 Features

- 🔍 **Secret scanning** for exposed credentials in repositories  
- 🔐 **Pre-commit hook integration** to block unsafe commits  
- ⚙️ **CI/CD compatibility** to enforce security in pipelines

---

## 📦 Installation

Install via [pipx](https://pypa.github.io/pipx/), which safely installs CLI tools in isolated environments:

```sh
pipx install githush
```

Alternatively, install directly via pip:


```sh
pip install githush
```

## 🧪 Usage

### 🔍 Scan a repository
```
Usage: githush scan [OPTIONS] PATH

  Scan a repository or directory for exposed secrets.

Options:
  --staged-only       Scan only staged files.
  --config-path PATH  Path to the githush configuration file.
  --help              Show this message and exit.
```

### 🪝 Install the pre-commit git hook

```
Usage: githush install-hook [OPTIONS] PATH

  Install pre commit hook to block commits containing secrets.

Options:
  --help  Show this message and exit.
```