SAP/credential-digger — reverse-engineered prompt

Reverse engineered prompt

Build me a security tool that scans code for hardcoded secrets like passwords, API keys, tokens, crypto keys, and other sensitive info. I want it to work on GitHub and GitLab repos, pull requests, wiki pages, organizations, and also local git repos, files, and folders. The big goal is not just finding possible leaks, but cutting down the false alarms by using machine learning so the results are more useful.

Please include a simple command line flow where I can first load regex rules from a YAML file, then scan a repo and save findings in a database. Support a lightweight local database option and a Docker based setup with a web UI I can open in the browser. The UI should let me review findings and use similarity checks to help assess them faster.

Make it feel ready to run on Linux or Mac, with clear setup instructions and example commands. If you need details, check the current docs online and fill in sensible defaults.

Want more depth? Deep Reverse