This product was not featured by Product Hunt yet. It will not be visible on their landing page and won't be ranked (cannot win product of the day regardless of upvotes).
Product upvotes vs the next 3
Waiting for data. Loading
Product comments vs the next 3
Waiting for data. Loading
Product upvote speed vs the next 3
Waiting for data. Loading
Product upvotes and comments
Waiting for data. Loading
Product vs the next 3
Loading
PackGuard
Block AI config leaks before npm publish fires
428 npm packages already contain AI assistant dotfiles. 33 exposed live keys. PackGuard hooks into prepublishOnly, opens your tarball before it ships, and blocksclaude/,cursor/, source maps with embedded source, and high-entropy secrets. Refuses to publish until it's clean. Free for solo OSS.
Hey PH 👋
Built this after I nearly shipped my own Anthropic API key inside an npm package sitting in a .claude/ state file I didn't know Claude Code had written.
The Knostic audit is what made me realise this isn't just me: 428 of 46,500 scanned packages contain AI assistant config files. 33 had live credentials.
The frustrating part: every existing scanner runs too late. gitleaks, trufflehog git history. Socket.dev, Snyk post-publish. Nobody intercepts at the npm-pack moment.
PackGuard does. It's a one-line prepublishOnly hook that opens the about-to-ship tarball and refuses to publish if it finds anything dangerous.
Free forever for solo OSS (no account needed).
Try it right now: npx packguard scan
Would love to hear: which registry should I tackle after npm — PyPI or crates.io?
About PackGuard on Product Hunt
“Block AI config leaks before npm publish fires”
PackGuard was submitted on Product Hunt and earned 0 upvotes and 1 comments, placing #19 on the daily leaderboard. 428 npm packages already contain AI assistant dotfiles. 33 exposed live keys. PackGuard hooks into prepublishOnly, opens your tarball before it ships, and blocksclaude/,cursor/, source maps with embedded source, and high-entropy secrets. Refuses to publish until it's clean. Free for solo OSS.
On the analytics side, PackGuard competes within Freelance, Developer Tools and Artificial Intelligence — topics that collectively have 1M followers on Product Hunt. The dashboard above tracks how PackGuard performed against the three products that launched closest to it on the same day.
Who hunted PackGuard?
PackGuard was hunted by Kartik Shukla . A “hunter” on Product Hunt is the community member who submits a product to the platform — uploading the images, the link, and tagging the makers behind it. Hunters typically write the first comment explaining why a product is worth attention, and their followers are notified the moment they post. Around 79% of featured launches on Product Hunt are self-hunted by their makers, but a well-known hunter still acts as a signal of quality to the rest of the community. See the full all-time top hunters leaderboard to discover who is shaping the Product Hunt ecosystem.
For a complete overview of PackGuard including community comment highlights and product details, visit the product overview.
Kartik Shukla 