skill-sanitizer
Pre-share leak scanner for Claude Code skills (or any folder). Scans BEFORE you publish for secrets (API keys, tokens, private keys, .env values, high-entropy strings), PII (emails/phones), local machine paths (C:\Users\<name>, /home/<name>, /Users/<name>, UNC, internal hostnames), and client/proper-noun names from a LOCAL private dictionary; also flags service-specific code (jira/github/gitlab/slack/salesforce/notion/linear/ stripe/aws/google) that should be split into a dedicated service plugin. Use when the user says "sanitize this skill", "before sharing a skill", "check for leaks", "is this skill clean", "is this safe to commit/publish/ open-source", "scrub secrets", "redact before commit", or "pre-push leak check". Cross-platform, stdlib-only Python, fail-closed.
适合你,如果你在分享或开源Claude Code技能前需要检查是否泄露了密钥或敏感信息。
npx oh-my-skill add animaresearch/skills/skill-sanitizercurl -fsSL https://oh-my-skill.com/install.sh | bash -s -- animaresearch/skills/skill-sanitizernpx oh-my-skill verify animaresearch/skills/skill-sanitizer