Metadata-Version: 2.4
Name: secchecker
Version: 0.1.3
Summary: A CLI tool to detect secrets in repositories for maintaining best security practices.
Author-email: Vishnu Prashanth <vishnu7stanite@gmail.com>
License-Expression: MIT
Project-URL: Homepage, https://github.com/vishnu-77/secchecker
Project-URL: Documentation, https://github.com/vishnu-77/secchecker#readme
Project-URL: Repository, https://github.com/vishnu-77/secchecker.git
Project-URL: Bug Tracker, https://github.com/vishnu-77/secchecker/issues
Project-URL: Changelog, https://github.com/vishnu-77/secchecker/blob/main/CHANGELOG.md
Keywords: security,secrets,devsecops,cli,python
Classifier: Development Status :: 4 - Beta
Classifier: Intended Audience :: Developers
Classifier: Topic :: Security
Classifier: Topic :: Software Development :: Build Tools
Classifier: Programming Language :: Python :: 3
Classifier: Programming Language :: Python :: 3.8
Classifier: Programming Language :: Python :: 3.9
Classifier: Programming Language :: Python :: 3.10
Requires-Python: >=3.8
Description-Content-Type: text/markdown
License-File: LICENSE
Requires-Dist: click>=8.0
Provides-Extra: cli
Requires-Dist: rich; extra == "cli"
Dynamic: license-file

[![PyPI version](https://img.shields.io/pypi/v/secchecker.svg)](https://pypi.org/project/secchecker/)  
[![Python versions](https://img.shields.io/pypi/pyversions/secchecker.svg)](https://pypi.org/project/secchecker/)  
[![Build Status](https://github.com/vishnu-77/secchecker/actions/workflows/ci.yml/badge.svg)](https://github.com/vishnu-77/secchecker/actions)  
[![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](LICENSE)  




# secchecker  

`secchecker` is a Python package + CLI tool to detect hidden or untracked hardcoded secrets in repositories, helping developers keep their projects secure and audit-ready.  



## ✨ Features  
- Detects common secret types:  
  - Database credentials (Postgres, MySQL, Mongo)  
  - Cloud keys (AWS, GCP, Azure)  
  - Authentication tokens (JWTs, Private Keys)  
  - Generic API keys & passwords in configs  
- Generates **JSON** and **Markdown** reports  
- Easy CLI usage for **DevSecOps pipelines**  


## 🚀 Installation  

Clone the repository and install in editable mode:  

```bash
git clone https://github.com/yourusername/secchecker.git
cd secchecker
pip install -e .
````

## 🛠 Usage

Scan a repository or project folder:

```bash
secchecker path/to/scan --format md
```

Options:

* `--format json` → generate JSON report
* `--format md` → generate Markdown report

Example:

```bash
secchecker . --format json
```

---

## ⚠️ Disclaimer

`secchecker` is intended **only** for security auditing of repositories you own or have explicit permission to test.

* Misuse of this tool to access, scan, or extract information from systems you do not own is **strictly prohibited** and may violate the law.
* The author(s) assume **no liability** for misuse or damages caused by this software.

---

## 📜 Terms & Conditions

By using `secchecker`, you agree to the following:

1. You will only use this tool on codebases you own or have explicit authorization to audit.
2. You will not use this software for malicious purposes, including but not limited to unauthorized access, exploitation, or data theft.
3. The software is provided **“as is,” without warranty of any kind**, express or implied.
4. The author(s) are not responsible for any damages, losses, or legal consequences arising from the use or misuse of this software.
5. You accept full responsibility for ensuring that your use of this tool complies with applicable laws and regulations in your jurisdiction.

---

## 🤝 Contributing

Contributions are welcome!

* Fork the repo
* Create a feature branch
* Submit a pull request 🚀


