All skills
Skillintermediate
Security
Repomix uses [Secretlint](https://github.com/secretlint/secretlint) to detect sensitive information in your files: - API keys - Access tokens - Credentials - Private keys - Environment variables
Claude Code Knowledge Pack7/10/2026
Overview
Security
Security Check Feature
Repomix uses Secretlint to detect sensitive information in your files:
- API keys
- Access tokens
- Credentials
- Private keys
- Environment variables
Configuration
Security checks are enabled by default.
Disable via CLI:
repomix --no-security-check
Or in repomix.config.json:
{
"security": {
"enableSecurityCheck": false
}
}
Security Measures
- Binary File Handling: Binary file contents are excluded from output, but their paths are listed in the directory structure for complete repository overview
- Git-Aware: Respects
.gitignorepatterns - Automated Detection: Scans for common security issues:
- AWS credentials
- Database connection strings
- Authentication tokens
- Private keys
When Security Check Finds Issues
Example output:
š Security Check:
āāāāāāāāāāāāāāāāāā
2 suspicious file(s) detected and excluded:
1. config/credentials.json
- Found AWS access key
2. .env.local
- Found database password
Best Practices
- Always review output before sharing
- Use
.repomixignorefor sensitive paths - Keep security checks enabled
- Remove sensitive files from repository
Reporting Security Issues
Found a security vulnerability? Please:
- Do not open a public issue
- Email: koukun0120@gmail.com
- Or use GitHub Security Advisories
Related Resources
- Configuration - Configure security checks via
security.enableSecurityCheck - Command Line Options - Use
--no-security-checkflag - Privacy Policy - Learn about Repomix's data handling