Versioned, Ed25519-signed catalog of known-public credentials (Stripe test keys, AWS canary keys, RFC and jwt.io examples) so leakferret marks documented placeholders as FIXTURE instead of false-alarming. Source URL required per entry. Data licensed CC-BY-SA-4.0.

Ruby gem wrapper for leakferret, the MCP-native secret scanner. gem install leakferret, then leakferret scan . Downloads the prebuilt Rust binary from GitHub Releases and execs it; honors LEAKFERRET_BIN for offline use. No scanning logic in the wrapper.

npm packages for leakferret: npm i -g @leakferret/cli for the CLI and npx @leakferret/mcp for the MCP server. Downloads the prebuilt Rust binary from Releases; honors LEAKFERRET_BIN.

GitHub Action for leakferret, the MCP-native secret scanner. uses: leakferrethq/leakferret-action@v1. Composite action that scans your repo for verified secret leaks and uploads SARIF to GitHub Code Scanning. Baseline support fails CI only on new leaks.

Go installer for leakferret, the MCP-native secret scanner. go install github.com/leakferrethq/leakferret-go/cmd/leakferret@latest. Fetches the prebuilt Rust binary from GitHub Releases and execs it; honors LEAKFERRET_BIN for offline use. No scanning logic in the wrapper.

VS Code extension for leakferret, the MCP-native secret scanner. Scan-on-save diagnostics for hardcoded secrets and a one-click quick-fix that rewrites a literal into an env-var lookup. Publisher leakferrethq; also published to Open VSX for Cursor and VSCodium.