Credential Guard
Plugin Verified ActiveProtect secrets and credentials from Claude Code. Blocks writes to .env files, detects API keys in shell commands, prevents hardcoded tokens, and guards service account JSON files.
To enhance the security of AI coding agents by preventing accidental exposure of secrets and credentials.
Features
- Blocks writes to sensitive files (.env, credentials)
- Detects API keys in shell commands
- Guards service account JSON files
- Warns about potential secrets in environment variables
Use Cases
- Use when working with sensitive API keys or credentials in AI coding projects.
- Use to prevent accidental commits of secrets to version control.
- Use to add a layer of security against destructive commands targeting credential files.
Non-Goals
- Does not manage or store secrets itself.
- Does not provide a secret vault.
- Does not replace a full secrets management system for production applications.
Practices
- Secret Management
- Security
- Access Control
Prerequisites
- jq installed on the system
- Claude Code environment
Installation
First, add the marketplace
/plugin marketplace add yurukusa/cc-safe-setup/plugin install credential-guard@cc-safe-setupQuality Score
VerifiedTrust Signals
Similar Extensions
Cc Safe Setup
99734 safety hooks for Claude Code — prevent file deletion, credential leaks, git disasters, and token waste during autonomous AI coding sessions
Claude Code Hooks
99Production safety hooks for autonomous Claude Code operation. Context monitoring, syntax checking, branch protection, activity logging, and more.
Tdd
99TDD workflow enforcement with auto-test hook
Claude Recap
99Topic-based automatic memory for Claude Code — never lose context across sessions or compactions.
Hooks Safety
99Essential safety hooks to prevent destructive operations in Claude Code. From cc-safe-setup (655+ hooks).
Hooks Automation
99Automation Hooks - Event-driven automation hooks