PostToolUse
security-scan.sh
Scans for secrets, API keys, passwords, and debug functions. Detects AWS, Stripe, GitHub tokens and more
Checks Performed
API keys (AWS, Stripe, GitHub)
Private keys and JWT tokens
Debug functions (dd, dump)
Overview
Scans for secrets, API keys, passwords, and debug functions. Detects AWS, Stripe, GitHub tokens and more. This hook runs on the PostToolUse event.
Configuration
Add this hook to your .claude/settings.json:
{
"hooks": {
"PostToolUse": [
{
"matcher": "Edit",
"command": "bash .claude-plugins/laravel-agent/hooks/scripts/security-scan.sh"
}
]
}
}