Free Tool
Find repos in
cloud sync folders
iCloud, Dropbox, Google Drive, and OneDrive silently corrupt .git directories. One command shows you which repos are at risk.
See it in action
What a real scan looks like on a developer's machine.
What this means
Cloud sync services treat .git directories like regular files. They upload partially written pack files, create lockfile conflicts during garbage collection, and overwrite ref pointers mid-update. Git's own FAQ warns against this. The damage is silent until you try to push, pull, or checkout and discover your history is corrupted.
Found repos at risk? DevSafe Backup encrypts your repositories with AES-256-GCM and uploads them to your own S3-compatible storage. Your keys never leave your machine.
View plans →Other free tools
devsafe diagnose
Find secrets your AI tools can read. Scans for exposed API keys, tokens, and credentials.
devsafe health
One score for every risk factor. Git config, hooks, remote status, and backup health.
devsafe mcp-scan
Audit your MCP configs for secrets. Finds API keys in Claude, Cursor, and VS Code configs.
devsafe lockbox
Encrypted secret vault. Import .env files, inject at runtime, share with time-limited grants.