Secrets Scanner by ZeroPath is a credential detection tool designed to identify exposed secrets in source code repositories and related assets. The tool scans for API keys, passwords, tokens, and other sensitive credentials across multiple cloud providers and services. The scanner includes over 700 pre-built detectors covering major platforms including AWS, GCP, Azure, GitHub, Stripe, Twilio, SendGrid, Slack, and Discord. It employs machine learning to filter out false positives and test credentials, reducing alert noise for security teams. The tool integrates with Git repositories to provide real-time scanning capabilities. It monitors file types including source code, binaries, Docker images, and archives. Webhook-based scanning triggers automatic scans on push events, pull request creation, and branch updates. Risk prioritization is implemented through CVSS 4.0 scoring, which evaluates credential type, exposure level, and expiration status. The scanner can generate pull requests to remove detected secrets and provides rotation guidance for remediation. The product is part of ZeroPath's application security platform, which includes additional capabilities for SAST, SCA, IaC scanning, and policy management. It is designed for integration into DevSecOps workflows and supports enterprise deployment scenarios.