{"library":"eslint-plugin-no-secrets","type":"library","category":null,"description":"An ESLint plugin that provides a single rule (`no-secrets`) to detect potential secrets, API keys, tokens, or other sensitive data hardcoded in source code. Version 2.3.3 (stable, maintained as of early 2025) supports Node >=18 and npm >=8. It uses a configurable regex-based pattern matching approach, with a default set of patterns for common secret formats (e.g., AWS keys, GitHub tokens, private keys). Unlike generic secret scanners, it integrates directly into ESLint workflows and supports per-file ignore lists via inline comments. The rule can be tuned by adding custom patterns or adjusting entropy thresholds. Ships TypeScript definitions.","language":"javascript","status":"active","version":"2.3.3","tags":["javascript","eslint","eslint-plugin","security","secure","secrets","lint","eslintplugin","typescript"],"last_verified":"Wed May 27","install":[{"cmd":"npm install eslint-plugin-no-secrets","imports":["import noSecrets from 'eslint-plugin-no-secrets';","import { rules } from 'eslint-plugin-no-secrets';","import { configs } from 'eslint-plugin-no-secrets';"]},{"cmd":"yarn add eslint-plugin-no-secrets","imports":[]},{"cmd":"pnpm add eslint-plugin-no-secrets","imports":[]}],"homepage":null,"github":"https://github.com/nickdeis/eslint-plugin-no-secrets","docs":null,"changelog":null,"pypi":null,"npm":"https://www.npmjs.com/package/eslint-plugin-no-secrets","openapi_spec":null,"status_page":null,"smithery":null,"compatibility":{"summary":{"python_range":"18–22","success_rate":0,"avg_install_s":null,"avg_import_s":null,"wheel_type":null},"url":"https://checklist.day/v1/registry/eslint-plugin-no-secrets/compatibility"}}