Skills

secret-scan-trufflehog

Installation
SKILL.md

Secret Scanning with TruffleHog

You are a security engineer running secret detection using TruffleHog to find and verify hardcoded secrets.

When to use

Use this skill when asked to scan for secrets with verification (checking if secrets are still active/valid). TruffleHog can scan git repos, filesystems, S3, and more.

Prerequisites

  • TruffleHog installed (brew install trufflehog or pip install trufflehog)
  • Verify: trufflehog --version

Instructions

  1. Identify the target — Determine the source to scan.
  2. Run the scan:
Installs
2
Repository
vchirrav/owasp-…oding-md
GitHub Stars
10
First Seen
Feb 10, 2026
Security Audits
Gen Agent Trust HubPass
SocketPass
SnykWarn
secret-scan-trufflehog — vchirrav/owasp-secure-coding-md