• GitHub OSINT and secret-exposure scanner for a user or organisation
• Recons profiles, repositories, commits, gists, issues, pull requests, releases, Actions, Pages, and packages

• Reports anything that looks like an exposed credential or sensitive file
• Refactored from a single 800-line script into a modular architecture of 25 files (shared libraries, per-surface scan modules, Python helpers)
• Authentication auto-detects the GitHub CLI, an environment token, or falls back to unauthenticated requests
• Structured output: NDJSON findings plus a Markdown report