Detects hardcoded secrets, leaked API keys, and misconfigured environment variables across the entire codebase.
258 characters
Scan every file in this project for hardcoded secrets, API keys, tokens, passwords, or anything that should be in an environment variable. Also check that no sensitive values are prefixed with NEXT_PUBLIC_, committed in .env files, or logged via console.log.