Free Tools Pricing
Log in Sign up →

Free Tool

Your AI reads your
secrets

CLAUDE.md and .cursorrules do not block file reads. They're suggestions. Your AI assistant can read every .env, every API key, every credential on your machine.

$ brew install hxalabs/tap/devsafe click to copy

What devsafe diagnose finds

Real output from a real machine.

11
Exposures found
Your AI coding tools can read production API keys, database strings, and cloud credentials right now.
3
Tips available
Per-tool tips show you the quickest fix. Deny rules, .env.test files, workspace excludes.
4
Leak paths checked
Direct file read. Runtime output. Search tools. MCP configs. All four paths scanned per tool.
$0
Free forever
No account. Runs locally. Ten seconds. You keep the results.

What this means

AI coding tools read files to help you write code. That includes .env files, config files, and anything else in your project directory.

CLAUDE.md rules and .cursorrules are instructions, not enforcement. The AI can still read the files. It just might choose not to mention them.

devsafe diagnose checks every tool you use across every path secrets can leak. devsafe shield blocks them for real.

Step 1: Block the reads

Shield adds deny rules, .env.test files, and pre-commit hooks so your AI tools physically cannot read your secrets.
Free to run. Paid plans add real-time monitoring that alerts you when new exposures appear.

See plans →
Step 2: Remove the files

Shield blocks the read. Lockbox removes the file. Use both.
Import your .env into Lockbox and delete the original. Your secrets live in an encrypted binary vault that no text tool can parse.

$ devsafe lockbox import .env click to copy

Free forever. Your secrets stay on your machine in an encrypted binary vault. Run devsafe lockbox run -- npm start to inject them into any process.

Newsletter

Stay ahead of threats

Research, threat intel, and tutorials. We only publish when we have something worth your time.

No spam. Unsubscribe anytime.

What topics interest you?

Threats
Tutorials
Engineering
AI Security
Product
Everything

Skip this step