Secret Scanner for Slack, Jira, Confluence, Asana, Wrike, Linear, Zendesk, GitHub and GitLab. Prevent credential leaks with n0s1.

Navigation

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for spark1 from gravatar.com spark1

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: GNU General Public License v3 or later (GPLv3+) (GNU GENERAL PUBLIC LICENSE)
  • Author: Spark 1
  • Tags Asana , Confluence , GitHub , GitLab , Jira , Linear , Slack , Wrike , Zendesk , cybersecurity , data leak , data loss prevention , scanner , secret leak , secret scanner , security , security scanner
  • Requires: Python >=3.10
  • Provides-Extra: dev , test
Classifiers
Report project as malware

Project description

n0s1 - Secret Scanner

n0s1 (pronunciation) is a secret scanner for Slack, Jira, Confluence, Asana, Wrike, Linear, Zendesk, GitHub and GitLab. It scans all channels/tickets/items/issues within the target platform in search of any leaked secrets in the titles, bodies, messages and comments. It is open-source and it can be easily extended to support scanning many others ticketing and messaging platforms.

See USER_MANUAL.md to learn how to run a scan.

Secrets are defined by an adaptable configuration file: regex.yaml. The scanner loads the configuration and searches for sensitive information, which includes:

  • Github Personal Access Tokens
  • GitLab Personal Access Tokens
  • AWS Access Tokens
  • PKCS8 private keys
  • RSA private keys
  • SSH private keys
  • npm access tokens

Currently supported target platforms:

Install

python3 -m ensurepip --upgrade
python3 -m pip install --upgrade n0s1
n0s1 --help

Quick Start

CLI:

python3 -m pip install n0s1
n0s1 jira_scan --server "https://<YOUR_JIRA_SERVER>.atlassian.net" --email "your-email@company.com" --api-key "<YOUR_JIRA_API_TOKEN>"

Docker:

docker run spark1security/n0s1 jira_scan --server "https://<YOUR_JIRA_SERVER>.atlassian.net" --email "your-email@company.com" --api-key "<YOUR_JIRA_API_TOKEN>"

MCP:

claude mcp add --scope user n0s1 -- uvx n0s1-mcp
claude "Scan my Jira project IT for leaked secrets"

From source:

git clone https://github.com/spark1security/n0s1.git
cd n0s1
python3 -m venv n0s1_python
source n0s1_python/bin/activate
pip install -e .
n0s1 jira_scan --server "https://<YOUR_JIRA_SERVER>.atlassian.net" --email "your-email@company.com" --api-key "<YOUR_JIRA_API_TOKEN>"
deactivate

Python SDK - See SDK_GUIDE.md:

python3 -m pip install n0s1

try:
    import scanner
except:
    import n0s1.scanner as scanner

# Create scanner instance
scanner_instance = scanner.SecretScanner(
    target="jira_scan",
    server="https://yourcompany.atlassian.net",
    email="your-email@company.com",
    api_key="your-jira-api-token",
    debug=True
)

# Run the scan
result = scanner_instance.scan()

# Process results
print(f"Scan complete. Found {len(result.get('findings', {}))} potential secrets")

GitHub Actions:

jobs:
  jira_secret_scanning:
    steps:
      - uses: spark1security/n0s1-action@main
        env:
          JIRA_TOKEN: ${{ secrets.JIRA_API_TOKEN }}
        with:
          scan-target: 'jira_scan'
          user-email: 'service_account@<YOUR_COMPANY>.atlassian.net'
          platform-url: 'https://<YOUR_COMPANY>.atlassian.net'

GitLab CI - Add the following job to your .gitlab-ci.yml file:

jira-scan:
  stage: test
  image:
    name: spark1security/n0s1
    entrypoint: [""]
  script:
    - n0s1 jira_scan --email "service_account@<YOUR_COMPANY>.atlassian.net" --api-key $JIRA_TOKEN --server "https://<YOUR_COMPANY>.atlassian.net" --report-file gl-dast-report.json --report-format gitlab
    - apt-get update
    - apt-get -y install jq
    - cat gl-dast-report.json | jq
  artifacts:
    reports:
      dast:
        - gl-dast-report.json

AI Agents

Resource Description
tool-schema.json Tool-use / function-calling schema (Anthropic & OpenAI compatible). Load this to give an AI agent the ability to invoke n0s1 as structured tool calls.
docs/ai.md AI-optimized reference covering all interfaces: CLI, Docker, Python SDK, GitHub Actions, and MCP server.

Want more? Check out Spark 1

If you liked n0s1, you will love Spark 1 which builds on top of n0s1 to provide even more enhanced capabilities for a complete security management offering.

Don't forget to check out the https://spark1.us website for more information about our products and services.

If you'd like to contact Spark 1 or request a demo, please use the free consultation form.

Community

n0s1 is a Spark 1 open source project.
Learn about our open source work and portfolio here.
Contact us about any matter by opening a GitHub Discussion here

Project details

Verified details

These details have been verified by PyPI
Project links
GitHub Statistics
Maintainers
Avatar for spark1 from gravatar.com spark1

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: GNU General Public License v3 or later (GPLv3+) (GNU GENERAL PUBLIC LICENSE)
  • Author: Spark 1
  • Tags Asana , Confluence , GitHub , GitLab , Jira , Linear , Slack , Wrike , Zendesk , cybersecurity , data leak , data loss prevention , scanner , secret leak , secret scanner , security , security scanner
  • Requires: Python >=3.10
  • Provides-Extra: dev , test
Classifiers

Release history Release notifications | RSS feed

1.2.3

This version

1.2.2

1.2.1

1.2.0

1.1.2

1.1.1

1.1.0

1.0.31

1.0.30

1.0.29

1.0.28

1.0.27

1.0.26

1.0.25

1.0.24

1.0.23

1.0.22

1.0.21

1.0.20

1.0.19

1.0.18

1.0.17

1.0.16

1.0.15

1.0.14

1.0.13

1.0.12

1.0.11

1.0.10

1.0.9

1.0.8

1.0.7

1.0.6

1.0.5

1.0.4

1.0.3

1.0.2

1.0.1

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

n0s1-1.2.2.tar.gz (118.3 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

n0s1-1.2.2-py3-none-any.whl (130.5 kB view details)

Uploaded Python 3

File details

Details for the file n0s1-1.2.2.tar.gz.

File metadata

  • Download URL: n0s1-1.2.2.tar.gz
  • Upload date:
  • Size: 118.3 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.12

File hashes

Hashes for n0s1-1.2.2.tar.gz
Algorithm Hash digest
SHA256 d912b9cfc660a39a930cbfe6ab831ab2e471bc9d0948a941c7a8e456685f27dc
MD5 e7e6cf197b5900821361ff1568b61e3c
BLAKE2b-256 ee866602cb49cbd5bd2054c6723eded7fbc7d5a73042b11c5d6a72002deb240c

See more details on using hashes here.

Provenance

The following attestation bundles were made for n0s1-1.2.2.tar.gz:

Publisher: publish.yml on spark1security/n0s1

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

File details

Details for the file n0s1-1.2.2-py3-none-any.whl.

File metadata

  • Download URL: n0s1-1.2.2-py3-none-any.whl
  • Upload date:
  • Size: 130.5 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? Yes
  • Uploaded via: twine/6.1.0 CPython/3.13.12

File hashes

Hashes for n0s1-1.2.2-py3-none-any.whl
Algorithm Hash digest
SHA256 0b5c298af088db300c3355fb6aafd5bea117d065f8acbdd6991277574621aff1
MD5 a0e84384c325a15f43dd8e7abef8ca87
BLAKE2b-256 bf3608370a78ec43c35f30ac9d6e6f54f7d3721c37e44e14a525e7375f11538d

See more details on using hashes here.

Provenance

The following attestation bundles were made for n0s1-1.2.2-py3-none-any.whl:

Publisher: publish.yml on spark1security/n0s1

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page