jwa91/env-inspector
skills/env-inspector/SKILL.md
Safely inspect .env files by showing key names and clearly non-sensitive values while redacting anything that looks like a secret. Best-effort heuristic redaction (keyword block + token-pattern blocklist + Shannon-entropy check + value allowlist) — not a cryptographic guarantee. Use when you need to understand a project's environment configuration without exposing credentials.
testing
Updated May 7, 2026
$ install --global
skillsauthnpx skillsauth add jwa91/agentskills env-inspectorInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: May 7, 2026, 7:18 AM112.7s3 files scanned
SKILL.md
- name:
- env-inspector
- description:
- Safely inspect .env files by showing key names and clearly non-sensitive values while redacting anything that looks like a secret. Best-effort heuristic redaction (keyword block + token-pattern blocklist + Shannon-entropy check + value allowlist) — not a cryptographic guarantee. Use when you need to understand a project's environment configuration without exposing credentials.
- version:
- 0.2.0
- - matcher:
- Bash
- - type:
- command
- command:
- ${CLAUDE_PROJECT_DIR}/.agents/skills/env-inspector/hooks/path-gate.sh
ENV Inspector
Reads .env files and emits a redacted view: keys are always shown, values are shown only when they look unambiguously safe. Anything ambiguous is replaced with <redacted>.
Usage
bash .agents/skills/env-inspector/scripts/env-safe-read.sh /path/to/.env
Inspect every .env* in a project (excluding examples):
for f in $(find . -maxdepth 3 -name '.env*' -not -name '.env.example' -not -path '*/node_modules/*'); do
echo "--- $f ---"
bash .agents/skills/env-inspector/scripts/env-safe-read.sh "$f"
echo ""
done
How redaction works
Four layers, all default-deny. A value is shown only if it survives all of them:
- Sensitive-key block. Keys matching
KEY|SECRET|TOKEN|PASSWORD|PASS|CREDENTIAL|AUTH|PRIVATE|SIGNING|HASH|SALT|ENCRYPTION|JWT|BEARER|COOKIE|CSRF|SESSION|DSN|WEBHOOK_URLare redacted regardless of value. - Token-pattern blocklist. Values matching known shapes (
sk-…,pk_live_…,ghp_…,github_pat_…,eyJ…JWT,AKIA…,xox[abprs]-…,AIza…,glpat-…,npm_…,dckr_pat_…) are redacted. - Shannon entropy. Values ≥16 chars with entropy ≥3.5 bits/char are redacted (catches random tokens that don't match a known prefix).
- Positive allowlist. What survives is shown only if it matches a known-safe shape: booleans, numbers, log levels, localhost/loopback, short non-random strings (≤20 chars), or HTTP(S) URLs without embedded
@credentials and without long random query strings.
What this skill is and isn't
- Is: a heuristic that makes leaks much less likely when summarizing env config.
- Isn't: a cryptographic guarantee. A short, human-chosen password under an innocent key (e.g.
MY_PIN=hunter12) can still slip through. - For high-stakes contexts (production secrets, audit logs), inspect manually instead.
Path-gate hook
The skill ships with a PreToolUse hook (hooks/path-gate.sh) that:
- Allows
env-safe-read.shto run only against paths inside$CLAUDE_PROJECT_DIR. - Rejects any target whose filename doesn't match a
.envpattern. - Rejects paths containing
..traversal.
The hook is a guardrail, not the primary defense — the redaction in the script is what protects you. The hook just ensures the script can't be aimed at, say, /etc/postgresql/.env by an over-eager agent.
If your harness doesn't honor skill-level hooks frontmatter, copy the matcher block into your project .claude/settings.json or run the script manually.
Compatibility
- Requires
bashandawk(entropy calc). No Python or jq dependency. - The hook uses
sedfor JSON parsing to avoid ajqdep — fragile but works for the standard Claude Code tool-call shape.
Related Skills
jwa91/release
data-ai
VerifiedTrustedCommunity
Release the current project to the personal Homebrew tap from repo-local release config. Use when the user says "release", "ship", "cut a version", "publish", "make a new tag", or asks how to make a new version available via jwa91/tap.
SKILL.mdUpdated May 14, 2026
jwa91/jwa-harden
tools
VerifiedTrustedCommunity
Use the `jwa-harden` CLI for secret-safe command execution, env-template discovery, and signing/notarization preflight checks. Trigger when a command needs secrets, when `.env.template` or 1Password references are involved, or before signed release flows.
SKILL.mdUpdated May 14, 2026
jwa91/tap-scaffolding
documentation
VerifiedTrustedCommunity
Modify or extend the `jwa-tobrew` scaffolding system — the templates that `init` writes into target projects. Trigger when the user says "add a new scaffold kind", "change what init writes", "update the templates", or asks how the embedded templates are wired.
SKILL.mdUpdated May 13, 2026
jwa91/tap-alignment
development
VerifiedTrustedCommunity
Detect and fix drift between a project and the conventions encoded in `jwa-tobrew`, prek, and the tap ADRs. Trigger when the user says "align", "any drift", "verify conventions", or asks why a particular file/symlink/script is required.
SKILL.mdUpdated May 13, 2026