Betterleaks is designed to function as a seamless replacement for Gitleaks, meaning existing command-line options and configuration files can be used without changes. At the same time, it delivers improved performance, more advanced filtering methods, configurable validation, and broader detection coverage.
The project came about after its creator no longer retained full control over the Gitleaks repository and branding. This shift opened the door to building a new tool from the ground up with greater flexibility and a renewed vision. The developer has since joined Aikido Security to focus on developing a leading open-source solution for identifying exposed secrets.
The first version of Betterleaks introduces several enhancements, including validation rules powered by Common Expression Language, more efficient scanning through token-based processing, and the ability to detect secrets that have been encoded multiple times. It also features a pure Go implementation, expanded detection rules for various providers, and parallel scanning of Git repositories for better speed.
Looking ahead, planned updates include support for scanning a wider range of sources, AI-assisted detection features, automatic revocation of exposed credentials, permission analysis, and further performance gains. The project is being developed collaboratively, with contributors from organizations such as Royal Bank of Canada, Red Hat, and Amazon.
Betterleaks is also part of a broader open-source security ecosystem supported by Aikido Security, alongside tools like Aikido Safe Chain, Aikido Zen, Aikido Intel, and Opengrep. Built with both developers and AI agents in mind, its command-line interface is optimized for automated scanning in modern development environments such as Claude Code, OpenAI Codex, and Cursor.
Newer Articles
- AI-Powered Stitch Transforms Ideas into Real UI Designs in Minutes 🚀
- How Pokémon Go Data Is Powering the Future of Delivery Robots 🤖🌍
- Uber Bets Big on Robotaxis Again - But This Time It’s Owning the Fleet 🚖🤖