ggshield-scannerDetect 500+ types of hardcoded secrets (API keys, credentials, tokens) before they leak into git. Wraps GitGuardian's ggshield CLI.
Install via ClawdBot CLI:
clawdbot install amascia-gg/ggshield-scannerGrade Good — based on market validation, documentation quality, package completeness, maintenance status, and authenticity signals.
Sends data to undocumented external endpoint (potential exfiltration)
report → https://github.com/GitGuardian/ggshield-skill/issuesHardcoded API key or token pattern found in skill definition
AKIAIOSFODNN...Potentially destructive shell commands in tool definitions
curl -fsSL https://molt.bot/install.sh | bashCalls external URL not in known-safe list
https://github.com/GitGuardian/ggshield-skillGenerated Mar 1, 2026
Development teams integrate ggshield as a pre-commit hook to automatically scan staged changes for secrets before commits, preventing accidental leaks into version control. This ensures code quality and compliance with security policies, reducing incident response costs.
Organizations audit existing codebases to identify historical secrets, such as AWS keys or database passwords, enabling credential rotation and remediation. This mitigates risks from past oversights and supports regulatory compliance like GDPR.
DevOps teams embed ggshield into continuous integration pipelines to scan code during builds, providing automated feedback on pull requests. This scales secret detection across large projects and enforces security standards.
Containerized application developers scan Docker images for embedded secrets in layers before deployment, preventing exposure in production environments. This complements infrastructure-as-code security practices.
Security consultants use ggshield to assess external or open-source code for hardcoded secrets during vendor audits, helping clients avoid supply chain vulnerabilities. This supports due diligence in partnerships.
GitGuardian offers a free tier for basic scanning with limited features, driving user adoption, while premium tiers provide advanced detection, team management, and enterprise support. Revenue comes from subscription fees based on scan volume and integrations.
Large organizations purchase enterprise licenses for on-premise deployment, custom integrations, and dedicated support, ensuring data privacy and compliance. This model targets regulated industries like finance and healthcare.
The skill is distributed through platforms like Clawdhub, where developers install it as part of their AI agent toolkit, potentially generating revenue via marketplace commissions or upsells to premium services. This leverages community growth.
💬 Integration Tip
Ensure ggshield CLI and API key are properly installed and set in environment variables before using the skill; test with a small file first to verify functionality.
Scored Apr 19, 2026
AI Analysis
The skill is a legitimate wrapper for GitGuardian's official ggshield CLI, a known secret scanning tool. The external API call (GitGuardian's service) is documented and required for its core functionality. The example credential (AKIAIOSFODNN...) is a standard AWS placeholder used for demonstration, not a harvesting attempt.
Audited Apr 16, 2026 · audit v1.0
Audit codebases and infrastructure for security issues. Use when scanning dependencies for vulnerabilities, detecting hardcoded secrets, checking OWASP top 10 issues, verifying SSL/TLS, auditing file permissions, or reviewing code for injection and auth flaws.
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope,...
Detect anomalies and outliers in construction data: unusual costs, schedule variances, productivity spikes. Statistical and ML-based detection methods.
Efficient, secure agent-to-agent communication protocol. 40-60% token reduction, built-in privacy, Ed25519 signatures.
Scan websites and content to identify SEO gaps, analyze meta tags, technical factors, keyword use, and provide competitor comparison insights.
Provides a comprehensive testing methodology for AI software, covering strategy design, unit, integration, and end-to-end tests with coverage and reporting g...