Automic Vault Automic Vault
1.0 fetch 2.0 sandbox 3.0 report

AI agent secret scanner

Scan secrets before the agent reads them.

One curl command runs a read-only offline scan and shows plaintext credential exposure before the next agent session starts.

Run this first one-liner
/usr/bin/curl -fsSL https://www.automicvault.com/scanner.sh | /bin/bash

Detects secrets that tools leave accessible.

download sandbox detect fix

Repository scanners help, but agent-readable secrets often live in the home directory: CLI auth files, package manager config, cloud credentials, shell profiles, and MCP server settings.

~/.netrc HTTP credentials ~/.aws/credentials cloud keys ~/.npmrc registry tokens ~/.config/gh GitHub tokens ~/.ssh unencrypted private keys mcp.json server credentials

The scanner run.

Fast enough for a preflight. Restricted enough for a curl one-liner.

detector-only
1.0

Download

Fetches the scanner payload.

The script downloads /scanner.gz, unpacks it into a temporary directory, and removes the temp directory when the run exits.

2.0

Sandbox

Denies writes and network access before scanning.

The scanner process runs through sandbox-exec with file writes and outbound network blocked. The only network request is the wrapper's initial scanner download.

3.0

Report

Shows findings without printing secret values.

Findings identify the tool and path, such as curl with ~/.netrc or openssh with private key files, while leaving credential contents out of the terminal output.

4.0

Next step

Move supported secrets out of plaintext files.

After a finding, install Automic Vault to keep supported credentials in protected storage and inject them only into trusted tool executions.

curl -fsSL https://automicvault.com/install.sh | sh && av open
Scanner findings and Automic Vault controls
Find Scanner output av secret-scanner reports high-confidence plaintext exposure without printing the secret value.
Move Protected storage av save KEY stores supported credentials outside files an agent can casually read.
Inject Trusted execution av inject +KEY /abs/tool gives the credential to the approved executable, not to the model transcript.

Free and open source

Find plaintext secrets before your next agent run.

Download Automic Vault Move secrets out of files View source