mantra
« Back to VersTracker
Description:
Tool to hunt down API key leaks in JS files and pages
Type: Formula  |  Tracked Since: Dec 28, 2025
Links: Homepage  |  formulae.brew.sh
Category: Security
Tags: security scanner api-keys javascript devsecops
Install: brew install mantra
About:
Mantra is a specialized security tool designed to scan JavaScript files and web pages for exposed API keys and sensitive credentials. It automates the process of identifying potential data leaks by parsing code and network responses. This helps developers and security teams proactively secure their applications against unauthorized access.
Key Features:
  • Scans JavaScript files and live web pages for API keys
  • Supports multiple key formats (OpenAI, AWS, Stripe, etc.)
  • Fast and lightweight command-line interface
  • Redaction of sensitive output to prevent secondary leaks
Use Cases:
  • Performing security audits on web applications
  • Scanning codebases before committing changes
  • Continuous integration (CI) pipelines for leak detection
Alternatives:
  • truffleHog – Scans git history for secrets, whereas Mantra focuses on runtime JS and files.
  • gitleaks – General-purpose secret scanner often used in CI, while Mantra targets frontend-specific leaks.
Version History
Detected Version Rev Change Commit
Sep 16, 2025 3:47am 0 VERSION_BUMP 0bdd1c6c
« Back to VersTracker  |  Browse Packages  |  About