vet: Catch secrets before you commit

A blazingly fast, local-first secret scanner for your source code. Detects API keys, tokens, and credentials before they reach your repository.

View install script

curl -fsSL https://vet.codes/install.sh | bash

powershell -c "irm https://vet.codes/install.ps1 | iex"

Built for speed

Designed to integrate seamlessly into your workflow.

50,000+ files/sec

Written in Rust for maximum performance. Scan your entire codebase in milliseconds.

$ vet scan .
✓ scanned 6,936 files (85.3ms)
● 5 secrets · 1 critical · 3 high · 1 low

CLI & VS Code

Powerful CLI for automation. Real-time scanning in your editor as you type.

Pre-commit hooks

Block commits containing secrets automatically. Install with one command.

Zero configuration

Works out of the box with sensible defaults. Customize when you need to.

.vet.toml

severity = "low"

exclude_paths = ["node_modules/**"]

[[patterns]]
id = "custom-key"
name = "Custom key"
regex = "CUSTOM_[A-Z0-9]{{32}}"
severity = "high"

Detects what matters

High-precision patterns for OpenAI, Stripe, AWS, Slack, GitHub, and more.

OpenAI

Stripe

AWS

Slack

GitHub

100+ secret patterns across 14+ categories

Start scanning today

Open source, blazingly fast, completely private.

View on GitHub