Tools

Swarm Leak Detector: Free Tool to Scan for Exposed API Keys in OpenClaw Configs

✍️ OpenClawRadar📅 Published: February 26, 2026🔗 Source
Swarm Leak Detector: Free Tool to Scan for Exposed API Keys in OpenClaw Configs
Ad

A developer running OpenClaw agents in production built a free tool to address a common security issue: API keys sitting in plaintext JSON files that any process on the machine can read.

What It Does

The tool, swarm-leak-detector, scans your configuration files for exposed credentials. It specifically looks for patterns matching over 21 different service providers including OpenAI, Anthropic, OpenRouter, and Stripe.

How to Use It

Run the scanner with this command:

npx swarm-leak-detector scan ~/.clawdbot/

Key Features

  • Zero dependencies
  • MIT licensed
  • Takes about 30 seconds to run
  • Scans for 21+ credential patterns
  • Specifically designed for OpenClaw/Clawdbot setups
Ad

Source and Availability

The tool is available on GitHub at https://github.com/5WARM-AI/swarm-leak-detector. The developer created it to solve their own problem of finding API keys in plaintext JSON files and is open to feedback from others running similar agent setups.

This type of security scanning tool is particularly useful for developers working with AI agents where API keys are frequently stored in configuration files and accidental exposure can lead to unauthorized access and unexpected charges.

📖 Read the full source: r/LocalLLaMA

Ad

👀 See Also

Developer Builds GALA Programming Language with Claude Code, Notes Strong Typing Improves AI-Generated Code Reliability
Tools

Developer Builds GALA Programming Language with Claude Code, Notes Strong Typing Improves AI-Generated Code Reliability

A developer built GALA, a functional programming language that transpiles to Go, using Claude Code extensively. The language features sealed types, exhaustive pattern matching, immutability by default, and monads, with Claude helping implement type inference, pattern-matching transformers, and fixing over 40 bugs.

OpenClawRadar
Running NemoClaw with Local vLLM: Setup Notes and Agent Engineering Observations
Tools

Running NemoClaw with Local vLLM: Setup Notes and Agent Engineering Observations

A developer documented running NVIDIA's NemoClaw sandboxed AI agent platform with a local Nemotron 9B v2 model via vLLM on WSL2. Key findings include inference routing details, parser compatibility issues, and observations about the agent engineering gap.

OpenClawRadar
AutoSkillUpdate: A Claude Code Plugin That Detects Outdated Skills
Tools

AutoSkillUpdate: A Claude Code Plugin That Detects Outdated Skills

AutoSkillUpdate is an open-source Claude Code plugin that scans your codebase, compares it against existing skills, and identifies drift. It provides drift reports with file paths and line references, then offers to rewrite outdated skills with user confirmation.

OpenClawRadar
Total Recall: Local Knowledge Graph for Claude Code Conversation History
Tools

Total Recall: Local Knowledge Graph for Claude Code Conversation History

Total Recall is an open-source system that ingests Claude Code's JSONL conversation transcripts into a SQLite database with full-text search and vector embeddings, making conversation history searchable across sessions. It retrieves actual conversation excerpts with DAG-aware context and includes a ChatGPT importer.

OpenClawRadar