Findings · Security

No Exposed Secrets

No API keys, tokens, or credentials visible in page source — attackers actively scan for these

0.7%

of 418 scanned sites fail this check

Fail

0.7%

3 scans

Warning

0 scans

Pass

99.3%

415 scans

Why it matters

This check belongs to Security — is it safe? It's rated critical severity. No API keys, tokens, or credentials visible in page source — attackers actively scan for these

The fix

Vettd's Fix Pack includes a copy-paste-ready solution for this check — auto-generated for your specific site, in the right format for your stack. See pricing, or scan first to see what your site needs.

Check your own site for this.

Vettd runs this check (and 81 others) on any URL. Free, no signup, ~30 seconds.

Scan your site →

← All findings