Detecting Exposed Secrets Files includes a dedicated installation section; worked examples; 6 code blocks for direct copy-paste. The SKILL.md runs to about 802 words, in the catalog's typical mid-range.
Detecting Exposed Secrets Files sits in the Security category under the threat-hunting sub-topic in the ClaudSkills catalog. There are 10 related skills indexed alongside it; comparing a few before installing usually reveals which fits your workflow best.
These notes are auto-generated from features detected in the SKILL.md file and from this catalog's structure — they aren't part of the source repository.
Detecting Exposed Secrets Files is a community-contributed Claude Code skill in the threat-hunting sub-category. It ships as a SKILL.md file that Claude Code auto-discovers under ~/.claude/skills/detecting-exposed-secrets-files/ and loads when your prompt matches the skill's trigger.
When to invoke it: Use when: post-deploy verification on a new release, or SOC2 auditor asked "what's reachable in the web root that shouldn't be," or a bug-bounty report hints at a leaked file. Threshold: any of the canonical 40+ paths returns 200 OR returns a body matching the expected fingerprint of the file type (e.
The Detecting Exposed Secrets Files Claude Code skill is built for security engineers, penetration testers, DevSecOps practitioners, and development teams hardening codebases and infrastructure. It's part of ClaudSkills (also referred to as Claude Skills or Claude Code Skills) — the open community-curated registry of 116,000+ SKILL.md files for Anthropic's Claude Code agent and the wider Claude ecosystem (Claude API, Claude Agent SDK).
mkdir -p ~/.claude/skills/detecting-exposed-secrets-files curl -L https://claudskills.com/skills/detecting-exposed-secrets-files/SKILL.md \ -o ~/.claude/skills/detecting-exposed-secrets-files/SKILL.md
Or just download SKILL.md directly and drop it into ~/.claude/skills/detecting-exposed-secrets-files/. Claude Code auto-discovers it on next session.
Skills live at ~/.claude/skills/detecting-exposed-secrets-files/SKILL.md on macOS/Linux, or %USERPROFILE%\.claude\skills\detecting-exposed-secrets-files\SKILL.md on Windows. See the full install guide for step-by-step instructions.
Open @claudskills_bot on Telegram, tap Open Desktop App, and the desktop app installs this skill for you. Or share the bot link with a colleague — they get the same one-tap install. Learn more →
The ClaudSkills desktop app installs any skill directly into ~/.claude/skills/ with one click — no terminal required. Pro starts at $9/mo or $149 lifetime.
For the full experience including quality scoring and one-click install features for each skill — upgrade to Pro.
SKILL.md from the source repository to ~/.claude/skills/detecting-exposed-secrets-files/SKILL.md and restart Claude Code. Both flows are detailed at claudskills.com/install/.SKILL.md file that lives under ~/.claude/skills/<name>/ and tells the Claude Code CLI agent how to perform a specific task (instructions, prompts, allowed tools). Skills are auto-discovered at session start. Detecting Exposed Secrets Files is one of 67,000+ skills indexed in the open ClaudSkills catalog, classified under the Security category. Learn more at /learn/what-is-a-claude-skill/.If you reference this skill in a blog post, paper, or documentation, you can cite it as:
@misc{detecting-exposed-secrets-files-2026,
author = {Jeremy Longshore <[email protected]>},
title = {Detecting Exposed Secrets Files [Claude Code skill]},
year = {2026},
publisher = {ClaudSkills},
url = {https://claudskills.com/skills/detecting-exposed-secrets-files/}
}Browse all Security skills in the ClaudSkills registry, or explore these other picks from the same category:
Part of Acreator Store — Adam Lankamer's AI tools: PerfectStudio · Ucaption · UTagger · AutoXPoster · TestYourSkills · AutomationFlows · Au Naturel · Telegram @acreatorstore
SKILL.md files, not affiliated with, endorsed by, or sponsored by Anthropic.