Security Assessment
Credential Risk Scoring
Evaluate exposure and rotation hygiene for any credential — v1.1
H
Human Handling
Score:
0
Handling method
Fully automated generation
Copied once manually
Manually created
Plaintext storage occurred
Found in repo / logs / chat
R
Rotation Age
Score:
0
Days since rotation
Rotation policy (days)
S
Storage Security
Score:
0
Storage method
Managed secrets platform + automated rotation
Managed secrets platform (no rotation)
CI/CD variable only
Config / environment file
Plaintext file
B
Blast Radius
Score:
0
Privilege scope
Single service scoped
Environment scoped
Multi-service
Account-wide
Admin / root
U
Credential Lifetime
Score:
0
Expiry type
Ephemeral (<1 hour)
Short-lived (<24 hours)
Long-lived
No expiration
E
Exposure Signals
Score:
0
Found in Git history
+15
Shared via chat / email
+10
Public network usage
+10
Unknown usage patterns
+10
A
Automation Maturity
Score:
0
Automatic rotation enabled
−10
Fully ephemeral architecture
−15
Just-in-time access model
−10
Total Risk Score
0
/100
Low
No immediate action required.
Score Breakdown
H
Human handling
0
R
Rotation age
0
S
Storage security
0
B
Blast radius
0
U
Credential lifetime
0
E
Exposure signals
0
A
Automation (reduction)
0
Copy Results JSON