sensitive-file/aws-credentials

AWS credentials file

criticalSensitive filesensitive-file

What it detects

AWS shared credentials file (~/.aws/credentials). Typically holds one or more named profiles with access/secret keys.

Rotate every access key listed and delete the file from the repo.

Path / basename / content-header match. No content body is stored — only the path.

Found a false positive or want this rule tuned? File an issue. You can also suppress per-repo via a .repoguardignore line.