A CLI tool to detect insecure configurations before deploying your application.
- Detects dangerous or weak config values
- Supports
.env,.json,.yml, and more - Extensible validation rules
- Clear terminal output
- CI integration ready
npx secure-config-validator ./path/to/config.envEdit src/rules.ts to add your own patterns or keys.
- Always scan configs before deploying
- Use in pre-commit or CI pipelines
- Review custom rules regularly
Pull requests and feedback are welcome!
MIT License