SCAN

SCAN - Secret detection for Gradle builds

Catch API keys, tokens & credentials before they reach source control.

InstallDocs
plugins {
  id("io.github.theaniketraj.scan") version "2.0.0"
}

./gradlew scanForSecrets

Pattern Recognition

Detects AWS, GitHub, DB strings using refined regex patterns.

Entropy Analysis

Finds random-looking strings and encoded secrets using entropy thresholds.

Context-Aware

Understands code context to reduce false positives.

Detection Examples

❌ AWS Access Key found in Config.kt:15
   AKIAIOSFODNN7EXAMPLE

⚠️ High entropy string in application.yml:8
   Entropy: 4.8 (random-looking password detected)

✅ Test key in TestConfig.kt:5 (whitelisted)
   test_key_12345