Sanitize
12-point pre-commit hook and Claude Code skill for blocking secrets, credentials, and sensitive data
Install / Use
/learn @vxcozy/SanitizeQuality Score
Category
Development & EngineeringSupported Platforms
README
sanitize
A 12-point pre-commit hook and Claude Code skill that blocks secrets, credentials, and sensitive data from being committed to git.
What it catches
| # | Check | Severity |
|---|-------|----------|
| 1 | Full file audit | info |
| 2 | Private keys / mnemonics | block |
| 3 | API keys / tokens / secrets | block |
| 4 | .env files | block |
| 5 | .mcp.json files | block |
| 6 | config.json with secrets | block/warn |
| 7 | Plaintext passwords | block |
| 8 | RPC URLs with embedded keys | block |
| 9 | Wallet addresses in non-test files | warn |
| 10 | console.log leaking sensitive data | warn |
| 11 | .gitignore coverage gaps | block |
| 12 | Test files with real credentials | block |
Install
Agent skill (Claude Code, Cursor, Copilot, etc.)
npx skills add vxcozy/sanitize
This installs the /sanitize slash command into your project. Works with any tool that supports the Agent Skills standard.
Pre-commit hook
git clone https://github.com/vxcozy/sanitize.git
./sanitize/scripts/install-hooks.sh /path/to/your/repo
# Or multiple repos at once
./sanitize/scripts/install-hooks.sh ./repo-a ./repo-b ./repo-c
The hook runs automatically on every git commit. Bypass with git commit --no-verify when needed.
Documentation
License
MIT
Related Skills
node-connect
344.1kDiagnose OpenClaw node connection and pairing failures for Android, iOS, and macOS companion apps
frontend-design
96.8kCreate distinctive, production-grade frontend interfaces with high design quality. Use this skill when the user asks to build web components, pages, or applications. Generates creative, polished code that avoids generic AI aesthetics.
openai-whisper-api
344.1kTranscribe audio via OpenAI Audio Transcriptions API (Whisper).
qqbot-media
344.1kQQBot 富媒体收发能力。使用 <qqmedia> 标签,系统根据文件扩展名自动识别类型(图片/语音/视频/文件)。
