Security
Leaked credential / secret scanner API
Scans PROVIDED text for leaked credentials using provider-specific regexes (AWS AKIA/ASIA keys, GitHub ghp_/github_pat_, Slack xox, Stripe sk_live, Google AIza, Twilio, SendGrid, npm, PEM private-key blocks, JWTs) plus a Shannon-entropy heuristic for generic high-entropy assignment values, reporting provider, redacted match, line, entropy, severity, and a 0-100 cleanliness score. Answers 'Are there secrets in this file?','Did I commit an AWS key?'.
Price$0.01per request
MethodPOST
Route/v1/security/secret-scan
StatusLive
MIME typeapplication/json
Rate limit120/minute
CacheNo cache
securitysecretscredentialsscannerentropyregexleakscoring
API URL
Integration docshttps://x402.hexl.dev/v1/security/secret-scanExample request
{
"text": "DB_HOST=db.internal\nAWS_KEY=AKIAIOSFODNN7EXAMPLE\ngithub=ghp_abcdefghijklmnopqrstuvwxyz0123456789"
}Example response
{
"score": 30,
"clean": false,
"findingsCount": 2,
"criticalFindings": 2,
"providers": [
"AWS",
"GitHub"
],
"findings": [
{
"id": "aws-access-key",
"provider": "AWS",
"severity": "critical",
"line": 2,
"redacted": "AKIA***LE",
"entropy": 3.68
},
{
"id": "github-token",
"provider": "GitHub",
"severity": "critical",
"line": 3,
"redacted": "ghp_***89",
"entropy": 5.17
}
]
}Input schema
{
"type": "object",
"required": [
"text"
],
"properties": {
"text": {
"type": "string",
"minLength": 1,
"description": "Raw text to scan.",
"examples": [
"DB_HOST=db.internal\nAWS_KEY=AKIAIOSFODNN7EXAMPLE\ngithub=ghp_abcdefghijklmnopqrstuvwxyz0123456789"
]
},
"entropyThreshold": {
"type": "number",
"description": "Shannon-entropy bits threshold for generic tokens (default 4.0).",
"examples": [
4
]
}
}
}Output schema
{
"type": "object",
"additionalProperties": true
}