Secret Scanner for Slack, Jira, Confluence, Asana, Wrike, Linear, Zendesk, GitHub and GitLab. Prevent credential leaks with n0s1.

Navigation

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for spark1 from gravatar.com spark1

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: GNU General Public License v3 or later (GPLv3+) (GNU GENERAL PUBLIC LICENSE)
  • Author: Spark 1
  • Tags Asana , Confluence , GitHub , GitLab , Jira , Linear , Slack , Wrike , Zendesk , cybersecurity , data leak , data loss prevention , scanner , secret leak , secret scanner , security , security scanner
  • Requires: Python >=3.10
  • Provides-Extra: dev , test
Classifiers
Report project as malware

Project description

n0s1 - Secret Scanner

n0s1 (pronunciation) is a secret scanner for Slack, Jira, Confluence, Asana, Wrike, Linear, Zendesk, GitHub and GitLab. It scans all channels/tickets/items/issues within the target platform in search of any leaked secrets in the titles, bodies, messages and comments. It is open-source and it can be easily extended to support scanning many others ticketing and messaging platforms.

See USER_MANUAL.md to learn how to run a scan.

Secrets are defined by an adaptable configuration file: regex.yaml. The scanner loads the configuration and searches for sensitive information, which includes:

  • Github Personal Access Tokens
  • GitLab Personal Access Tokens
  • AWS Access Tokens
  • PKCS8 private keys
  • RSA private keys
  • SSH private keys
  • npm access tokens

Currently supported target platforms:

Install

python3 -m ensurepip --upgrade
python3 -m pip install --upgrade n0s1
n0s1 --help

Quick Start

CLI:

python3 -m pip install n0s1
n0s1 jira_scan --server "https://<YOUR_JIRA_SERVER>.atlassian.net" --email "your-email@company.com" --api-key "<YOUR_JIRA_API_TOKEN>"

Docker:

docker run spark1security/n0s1 jira_scan --server "https://<YOUR_JIRA_SERVER>.atlassian.net" --email "your-email@company.com" --api-key "<YOUR_JIRA_API_TOKEN>"

MCP:

claude mcp add --scope user n0s1 -- uvx n0s1-mcp
claude "Scan my Jira project IT for leaked secrets"

From source:

git clone https://github.com/spark1security/n0s1.git
cd n0s1
python3 -m venv n0s1_python
source n0s1_python/bin/activate
pip install -e .
n0s1 jira_scan --server "https://<YOUR_JIRA_SERVER>.atlassian.net" --email "your-email@company.com" --api-key "<YOUR_JIRA_API_TOKEN>"
deactivate

Python SDK - See SDK_GUIDE.md:

python3 -m pip install n0s1

try:
    import scanner
except:
    import n0s1.scanner as scanner

# Create scanner instance
scanner_instance = scanner.SecretScanner(
    target="jira_scan",
    server="https://yourcompany.atlassian.net",
    email="your-email@company.com",
    api_key="your-jira-api-token",
    debug=True
)

# Run the scan
result = scanner_instance.scan()

# Process results
print(f"Scan complete. Found {len(result.get('findings', {}))} potential secrets")

GitHub Actions:

jobs:
  jira_secret_scanning:
    steps:
      - uses: spark1security/n0s1-action@main
        env:
          JIRA_TOKEN: ${{ secrets.JIRA_API_TOKEN }}
        with:
          scan-target: 'jira_scan'
          user-email: 'service_account@<YOUR_COMPANY>.atlassian.net'
          platform-url: 'https://<YOUR_COMPANY>.atlassian.net'

GitLab CI - Add the following job to your .gitlab-ci.yml file:

jira-scan:
  stage: test
  image:
    name: spark1security/n0s1
    entrypoint: [""]
  script:
    - n0s1 jira_scan --email "service_account@<YOUR_COMPANY>.atlassian.net" --api-key $JIRA_TOKEN --server "https://<YOUR_COMPANY>.atlassian.net" --report-file gl-dast-report.json --report-format gitlab
    - apt-get update
    - apt-get -y install jq
    - cat gl-dast-report.json | jq
  artifacts:
    reports:
      dast:
        - gl-dast-report.json

AI Agents

Resource Description
tool-schema.json Tool-use / function-calling schema (Anthropic & OpenAI compatible). Load this to give an AI agent the ability to invoke n0s1 as structured tool calls.
docs/ai.md AI-optimized reference covering all interfaces: CLI, Docker, Python SDK, GitHub Actions, and MCP server.

Want more? Check out Spark 1

If you liked n0s1, you will love Spark 1 which builds on top of n0s1 to provide even more enhanced capabilities for a complete security management offering.

Don't forget to check out the https://spark1.us website for more information about our products and services.

If you'd like to contact Spark 1 or request a demo, please use the free consultation form.

Community

n0s1 is a Spark 1 open source project.
Learn about our open source work and portfolio here.
Contact us about any matter by opening a GitHub Discussion here

Project details

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for spark1 from gravatar.com spark1

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: GNU General Public License v3 or later (GPLv3+) (GNU GENERAL PUBLIC LICENSE)
  • Author: Spark 1
  • Tags Asana , Confluence , GitHub , GitLab , Jira , Linear , Slack , Wrike , Zendesk , cybersecurity , data leak , data loss prevention , scanner , secret leak , secret scanner , security , security scanner
  • Requires: Python >=3.10
  • Provides-Extra: dev , test
Classifiers

Release history Release notifications | RSS feed

This version

1.2.3

1.2.2

1.2.1

1.2.0

1.1.2

1.1.1

1.1.0

1.0.31

1.0.30

1.0.29

1.0.28

1.0.27

1.0.26

1.0.25

1.0.24

1.0.23

1.0.22

1.0.21

1.0.20

1.0.19

1.0.18

1.0.17

1.0.16

1.0.15

1.0.14

1.0.13

1.0.12

1.0.11

1.0.10

1.0.9

1.0.8

1.0.7

1.0.6

1.0.5

1.0.4

1.0.3

1.0.2

1.0.1

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

n0s1-1.2.3.tar.gz (120.7 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

n0s1-1.2.3-py3-none-any.whl (132.8 kB view details)

Uploaded Python 3

File details

Details for the file n0s1-1.2.3.tar.gz.

File metadata

  • Download URL: n0s1-1.2.3.tar.gz
  • Upload date:
  • Size: 120.7 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.12

File hashes

Hashes for n0s1-1.2.3.tar.gz
Algorithm Hash digest
SHA256 9ef0664af21c9e29530abb15dd10a8920c9e4d864446518b0321fd0af3bd823d
MD5 e35bad23ac747cdf99f944adf6662aac
BLAKE2b-256 647ca67bdccfd35f88e03ceb8772ccb9060ac7c64ba34299f49a090db90f4766

See more details on using hashes here.

Provenance

The following attestation bundles were made for n0s1-1.2.3.tar.gz:

Publisher: publish.yml on spark1security/n0s1

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file n0s1-1.2.3-py3-none-any.whl.

File metadata

  • Download URL: n0s1-1.2.3-py3-none-any.whl
  • Upload date:
  • Size: 132.8 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.12

File hashes

Hashes for n0s1-1.2.3-py3-none-any.whl
Algorithm Hash digest
SHA256 608a279ba5a6a54aa2b3acc693138904576ebcc156f1d29e5c4f60f2452304ff
MD5 43f5acabc8a5f7478cb42708816dd83f
BLAKE2b-256 ada631630ccdca947ab52e18d2da4c6b8f43321b4a64c6832d2040a05b17caac

See more details on using hashes here.

Provenance

The following attestation bundles were made for n0s1-1.2.3-py3-none-any.whl:

Publisher: publish.yml on spark1security/n0s1

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page