Zach Rice, creator of the widely used Gitleaks secret scanner, has launched Betterleaks — a drop-in replacement designed for modern development workflows including AI-assisted coding. Betterleaks replaces entropy-based detection with BPE token efficiency scanning, uses Common Expression Language (CEL) for flexible validation rules, is written in pure Go without CGO or Hyperscan dependencies, and adds parallelized Git scanning. The project is MIT-licensed, sponsored by security startup Aikido, and co-maintained by contributors from Red Hat, RBC, and Amazon. Rice cites AI-assisted 'vibe coding' as a growing risk factor for credential leaks, as developers increasingly override AI warnings about hardcoded secrets. The roadmap includes LLM-based classification, secret revocation support, and broader source scanning beyond Git repos.
Sort: