Ghosthunt

Name: Ghosthunt
Author: 78degrees

78degrees/ghosthunt

Let your agent scan the dev machine for leaked API keys in .env files, shell history, and configs before you ship or share a repo.

Overview

Ghosthunt is a MCP server for the Ship phase that finds leaked secrets on your machine—API keys in .env files, shell history, and configs.

What is this MCP server?

npm package ghosthunt version 1.0.0 with stdio MCP transport
Surfaces leaked secrets across .env files, shell history, and configs
Focused on API keys and similar credentials on the local machine
Requires YOUR_API_KEY for the Ghosthunt service
GitHub source at 78degrees/ghosthunt
npm package version 1.0.0
stdio transport only in registry metadata
One required secret: YOUR_API_KEY

Compatible agents: Claude Code, Cursor, Codex, any compatible agent

What problem does it solve?

Keys copied into local env files and shell history silently accumulate until you accidentally leak them in a zip, screen share, or commit.

Who is it for?

Solo developers with many local projects and API keys who want MCP-driven secret hunts before shipping or open-sourcing.

Skip if: Teams that only need centralized cloud secret scanning with no local workstation audit, or users without a Ghosthunt API key.

What do I get? / Deliverables

Your agent can invoke Ghosthunt scans and get a clearer picture of credential leaks on disk and in history so you can rotate and clean up.

Agent-triggered local secret leak reports
Coverage of .env, shell history, and config hotspots
Actionable list to rotate or remove exposed credentials

Recommended MCP Servers

1Claw Vault1clawAI/1claw-mcp

1Claw Vault exposes a stdio MCP server (@1claw/mcp) that connects AI agents to HSM-backed secret storage with just-in-ti…2 stars

1passwordCakeRepository/1Password-MCP

The 1Password MCP server lets solo builders wire service-account access into Claude Code, Cursor, or other stdio MCP hos…16 stars

402sentinel Mcpkaditang/402sentinel-mcp

402 Sentinel MCP gives solo builders and agent authors a pre-flight check before honoring x402 payment flows on Base. In…1 stars

A2adependencyinspector Mcpclauxel/a2a-dependency-inspector-mcp

A2A Dependency Inspector MCP is a hosted Clauxel server for builders shipping agent-to-agent (A2A) workflows who must pr…

A2a Governance Bridge Mcp

A2A Governance Bridge is a Model Context Protocol server that exposes governance-oriented tools for multi-agent setups: …

A2aidentitytoll Mcpclauxel/a2a-identity-toll-mcp

A2A Identity Toll MCP is a Clauxel-hosted remote MCP server that acts as an identity and policy toll booth for agent-to-…

Journey fit

Primary fit

Pre-ship secret exposure is a classic solo-builder footgun; this belongs in Ship where you harden what leaves your laptop. Security subphase covers local leak detection and credential hygiene, not production runtime monitoring.

How it compares

Local secret-leak MCP scanner, not a full SAST suite or production secrets manager.

Common Questions / FAQ

Who is Ghosthunt for?

Indie builders and small teams who store lots of API keys locally and want an agent to hunt leaks in env files, shell history, and configs.

When should I use Ghosthunt?

Use it before shipping, recording demos, or publishing repos when you suspect stale keys linger outside git-aware tooling.

How do I add Ghosthunt to my agent?

Install the ghosthunt npm package, set YOUR_API_KEY, and add the stdio MCP server entry in Claude Code, Cursor, or another MCP client.

Ghosthunt

78degrees/ghosthunt

Let your agent scan the dev machine for leaked API keys in .env files, shell history, and configs before you ship or share a repo.

Overview

Ghosthunt is a MCP server for the Ship phase that finds leaked secrets on your machine—API keys in .env files, shell history, and configs.

What is this MCP server?

npm package ghosthunt version 1.0.0 with stdio MCP transport
Surfaces leaked secrets across .env files, shell history, and configs
Focused on API keys and similar credentials on the local machine
Requires YOUR_API_KEY for the Ghosthunt service
GitHub source at 78degrees/ghosthunt
npm package version 1.0.0
stdio transport only in registry metadata
One required secret: YOUR_API_KEY

Compatible agents: Claude Code, Cursor, Codex, any compatible agent

What problem does it solve?

Keys copied into local env files and shell history silently accumulate until you accidentally leak them in a zip, screen share, or commit.

Who is it for?

Solo developers with many local projects and API keys who want MCP-driven secret hunts before shipping or open-sourcing.

Skip if: Teams that only need centralized cloud secret scanning with no local workstation audit, or users without a Ghosthunt API key.

What do I get? / Deliverables

Your agent can invoke Ghosthunt scans and get a clearer picture of credential leaks on disk and in history so you can rotate and clean up.

Agent-triggered local secret leak reports
Coverage of .env, shell history, and config hotspots
Actionable list to rotate or remove exposed credentials

Recommended MCP Servers

1Claw Vault1clawAI/1claw-mcp

1Claw Vault exposes a stdio MCP server (@1claw/mcp) that connects AI agents to HSM-backed secret storage with just-in-ti…2 stars

1passwordCakeRepository/1Password-MCP

The 1Password MCP server lets solo builders wire service-account access into Claude Code, Cursor, or other stdio MCP hos…16 stars

402sentinel Mcpkaditang/402sentinel-mcp

402 Sentinel MCP gives solo builders and agent authors a pre-flight check before honoring x402 payment flows on Base. In…1 stars

A2adependencyinspector Mcpclauxel/a2a-dependency-inspector-mcp

A2A Dependency Inspector MCP is a hosted Clauxel server for builders shipping agent-to-agent (A2A) workflows who must pr…

A2a Governance Bridge Mcp

A2A Governance Bridge is a Model Context Protocol server that exposes governance-oriented tools for multi-agent setups: …

A2aidentitytoll Mcpclauxel/a2a-identity-toll-mcp

A2A Identity Toll MCP is a Clauxel-hosted remote MCP server that acts as an identity and policy toll booth for agent-to-…

Journey fit

Primary fit

How it compares

Local secret-leak MCP scanner, not a full SAST suite or production secrets manager.

Common Questions / FAQ

Who is Ghosthunt for?

Indie builders and small teams who store lots of API keys locally and want an agent to hunt leaks in env files, shell history, and configs.

When should I use Ghosthunt?

Use it before shipping, recording demos, or publishing repos when you suspect stale keys linger outside git-aware tooling.

How do I add Ghosthunt to my agent?

Install the ghosthunt npm package, set YOUR_API_KEY, and add the stdio MCP server entry in Claude Code, Cursor, or another MCP client.

Overview

What is this MCP server?

What problem does it solve?

Who is it for?

What do I get? / Deliverables

Recommended MCP Servers

Journey fit

Who is Ghosthunt for?

When should I use Ghosthunt?

How do I add Ghosthunt to my agent?

This week for builders

Overview

What is this MCP server?

What problem does it solve?

Who is it for?

What do I get? / Deliverables

Recommended MCP Servers

Journey fit

Who is Ghosthunt for?

When should I use Ghosthunt?

How do I add Ghosthunt to my agent?