// vscode-extension

Code
Scrubber

Stop leaking API keys.
Fix them in one click.
Download on GitHub Read the docs
100% local — nothing leaves your machine
1-click fix to .env or AWS Secrets Manager
0 marketplace account needed
// detects credentials from
AWS Stripe GitHub OpenAI Twilio Firebase SendGrid Slack Heroku Database URLs Google Cloud Azure Mailgun Shopify PayPal Anthropic + any high-entropy string
api_client.js ⚠ 2 DETECTED
1const stripe = require('stripe'); 2  3const AWS_SECRET = "AKIAJS72XEXAMPLE" // ⚠ SCRUBBER DETECTED 4const DB_URL    = "postgres://admin:password@localhost:5432" // ⚠ SCRUBBER DETECTED
What it does
01. SCAN

Uses regex patterns and Shannon entropy to find high-randomness strings (like secret keys) in real-time.

# status-bar
02. HIGHLIGHT

Integrates directly into the VSCode "Problems" tab. No extra UI bloat. Just red squiggles where they matter.

# quick-fix
03. FIX

Refactor secrets to .env files or AWS Secrets Manager with a single click. Moves the data, updates the code.

screenshots
about

Built after watching the same API key mistake happen in every group project. The fix is always the same — just tedious. So we automated it. Runs entirely locally inside VSCode. No cloud dependency, no AI black box.