You might want to pick a different name since it collides with my already-published crate.

https://crates.io/crates/secrets

interesting that the author defines a list of pre-defined secrets to scan for

https://github.com/sirwart/secrets/blob/main/src/find_secret...

Why no check for AWS keys?

I actually did have a check for AWS keys earlier today, but as far as I can tell all the AWS keys with well defined prefixes are key IDs and not true secrets. It will still pick up AWS keys with the random string detection.

AWS has their own as well https://github.com/awslabs/git-secrets

you may also want to look at ggshield: https://github.com/GitGuardian/ggshield