SecretGuard CLI – Detect & Fix API Key Leaks Before They Reach Version Control 🛡️

SecretGuard CLI is a developer-first security tool that detects and fixes hardcoded API keys directly in your codebase. Instead of waiting until code is pushed to GitHub, SecretGuard works earlier in the development workflow to prevent secret leaks before they happen. 🔧 Features: • Multi-layer detection (pattern matching, heuristics, entropy) • CLI workflow: scan → preview → fix → verify • Automatic replacement with environment variables • .env and .env.example generation • Gitignore safety checks to prevent accidental leaks ⚡ Demo Overview: This demo shows how SecretGuard: 1. Detects hardcoded secrets 2. Previews safe changes 3. Automatically fixes vulnerabilities 4. Verifies a secure codebase 🔐 Why it matters: Secret leaks are one of the most common security issues in modern development. SecretGuard helps shift security left—detecting and fixing issues early, before they reach version control. 💻 GitHub Repository: https://github.com/jishnumahanta/SecretGuard-CLI 📁 IBM Bob Reports: See the `bob_sessions` folder in the repository for full development history and task sessions. --- Built using IBM Bob to accelerate development, improve code quality, and iterate quickly on features.