🧪 Skills

Openclaw Sentry

Scan workspace files for leaked secrets: API keys, tokens, passwords, private keys, and credentials. Detects AWS, GitHub, Slack, Stripe, OpenAI, Anthropic, Google, Azure keys and more. Free alert laye

v1.0.2
❤️ 1
⬇️ 1.3k
👁 1
Save📁 Collect
Share

Description

name: openclaw-sentry user-invocable: true metadata: {"openclaw":{"emoji":"🔑","requires":{"bins":["python3"]},"os":["darwin","linux","win32"]}}

OpenClaw Sentry

Scans your agent workspace for leaked secrets — API keys, tokens, passwords, private keys, and credentials that should never be in plain text.

The Problem

Agent workspaces accumulate secrets: API keys in config files, tokens in memory logs, passwords in environment files. A single leaked credential can compromise your entire infrastructure. Existing secret scanners work on git repos — nothing watches the agent workspace itself.

Commands

Full Scan

Scan all workspace files for secrets and high-risk files.

python3 {baseDir}/scripts/sentry.py scan --workspace /path/to/workspace

Check Single File

Check a specific file for secrets.

python3 {baseDir}/scripts/sentry.py check MEMORY.md --workspace /path/to/workspace

Quick Status

One-line summary of secret exposure risk.

python3 {baseDir}/scripts/sentry.py status --workspace /path/to/workspace

What It Detects

Provider Patterns
AWS Access keys (AKIA...), secret keys
GitHub PATs (ghp_, gho_, ghs_, ghr_, github_pat_)
Slack Bot/user tokens (xox...), webhooks
Stripe Secret keys (sk_live_), publishable keys
OpenAI API keys (sk-...)
Anthropic API keys (sk-ant-...)
Google API keys (AIza...), OAuth secrets
Azure Storage account keys
Generic API keys, secrets, passwords, bearer tokens, connection strings
Crypto PEM private keys, .key/.pem/.p12 files
Database PostgreSQL/MySQL/MongoDB/Redis URLs with credentials
JWT JSON Web Tokens
Environment .env files with variables

Exit Codes

  • 0 — Clean, no secrets found
  • 1 — Warnings (high-risk files detected)
  • 2 — Critical secrets found

No External Dependencies

Python standard library only. No pip install. No network calls. Everything runs locally.

Cross-Platform

Works with OpenClaw, Claude Code, Cursor, and any tool using the Agent Skills specification.

Reviews (0)

Sign in to write a review.

No reviews yet. Be the first to review!

Comments (0)

Sign in to join the discussion.

No comments yet. Be the first to share your thoughts!

Compatible Platforms

Links

📂 Source Code

Pricing

Free

Related Configs

🧪 Skill

self-improving-agent

Free

Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...

❤️ 2.0k ⬇️ 218k
🧪 Skill

Self Improving Agent

Free

Captures learnings, errors, and corrections to enable continuous improvement. And also 50+ models for image generation, video generation, text-to-speech, spe...

❤️ 2.0k ⬇️ 206k
🧪 Skill

Find Skills

Free

Search, discover, and install skills from the open agent skills ecosystem to extend agent capabilities for specific tasks or domains.

❤️ 814 ⬇️ 199k
🧪 Skill

Summarize

Free

--- name: summarize description: Summarize URLs or files with the summarize CLI (web, PDFs, images, audio, YouTube). homepage: https://summarize.sh metadata: {"clawdbot":{"emoji":"🧾","requires":{"b

❤️ 609 ⬇️ 160k