OffensiveEdge
diff --git a/‎README.md‎
Lines changed: 98 additions & 32 deletions b/‎README.md‎
Lines changed: 98 additions & 32 deletions
diff --git a/‎coverage/index.html‎
Lines changed: 24 additions & 24 deletions b/‎coverage/index.html‎
Lines changed: 24 additions & 24 deletions
@@ -32,33 +32,56 @@
 
 ## ⚡ See It In Action
 
-**Before**: Manually searching for hardcoded secrets (30+ minutes)
+**Before**: Manually searching for hardcoded secrets across 100+ files (30+ minutes)
 
 ```javascript
+// File: src/config.js
 const apiKey = "AKIAIOSFODNN7EXAMPLE"
-const password = "mypassword123"
-// ... searching through 100+ files
+
+// File: .env
+DATABASE_PASSWORD=mysecret123
+
+// File: credentials.json
+{"github_token": "ghp_xxxxx"}
+// ... searching through entire codebase
 ```
 
-**After**: One command detects all secrets automatically
+**After**: One command scans entire workspace and detects all secrets automatically
 
 ```
-AWS Access Key (line 1) - Confidence: High
-Password (line 2) - Confidence: Medium
-GitHub Token (line 15) - Confidence: High
-... (12 secrets total)
+📄 src/config.js (1 secret(s))
+  AWS-KEY (1)
+  - Line 2, Column 14
+    Key: apiKey
+    Confidence: high
+
+📄 .env (1 secret(s))
+  PASSWORD (1)
+  - Line 15, Column 18
+    Key: DATABASE_PASSWORD
+    Confidence: medium
+
+📄 credentials.json (1 secret(s))
+  TOKEN (1)
+  - Line 3, Column 18
+    Key: github_token
+    Confidence: high
+
+... (12 secrets found across 8 files, 247 files scanned)
 ```
 
 ---
 
 ## ✅ Why Secrets-LE?
 
-- **15+ secret types detected** - AWS, Azure, GCP, GitHub, JWT, passwords, private keys
+- **19 secret types detected** - API keys, AWS, Azure, GCP, JWT, tokens, passwords, private keys
+- **Workspace-wide scanning** - Scans entire project, not just single files
 - **Zero Config** - Install → Press `Cmd+Alt+S` → Done
 - **100% Local** - No data leaves your machine, ever
 - **GitGuardian-level detection** - Without the cloud dependency
+- **Smart exclusions** - Automatically skips node_modules, .git, dist, and other build artifacts
 
-Perfect for pre-commit checks, security audits, and credential management.
+Perfect for pre-commit checks, security audits, and credential management across entire codebases.
 
 ---
 
@@ -71,12 +94,14 @@ If Secrets-LE saves you time, a quick rating helps other developers discover it:
 
 ### Key Features
 
+- **Workspace Scanning** - Scans entire project for secrets across all files
 - **Detect Secrets** - Find API keys, tokens, passwords, and private keys
+- **Smart File Filtering** - Automatically excludes node_modules, .git, build artifacts
 - **Sanitize Content** - Automatically replace secrets with safe placeholders
 - **Configurable Sensitivity** - Adjust detection levels (low, medium, high)
 - **Security-First** - Detects AWS, Azure, GCP keys, JWT tokens, and more
 - **Universal Support** - Works on any text file format
-- **13 languages** - English, Chinese, German, Spanish, French, Indonesian, Italian, Japanese, Korean, Portuguese, Russian, Ukrainian, Vietnamese
+- **4 languages** - English (base), German, Spanish, French
 
 ## 🚀 More from the LE Family
 
@@ -90,10 +115,12 @@ If Secrets-LE saves you time, a quick rating helps other developers discover it:
 
 ## 💡 Use Cases
 
-- **Pre-Commit Checks** - Scan files before committing to prevent credential leaks
-- **Security Audits** - Find hardcoded secrets across entire codebase
+- **Pre-Commit Checks** - Scan entire workspace before committing to prevent credential leaks
+- **Security Audits** - Find hardcoded secrets across entire codebase automatically
+- **Project Security** - Scan all files in your workspace for exposed credentials
 - **Config Validation** - Ensure no secrets in config files before deployment
-- **Code Review** - Quick scan during pull request reviews
+- **Code Review** - Quick workspace scan during pull request reviews
+- **Compliance** - Regular scans to maintain security standards
 
 ### Detecting API Keys & Credentials
 
@@ -150,18 +177,19 @@ MIIEpAIBAAKCAQEA...  # ✅ Detected
 ## 🚀 Quick Start
 
 1. Install from [Open VSX](https://open-vsx.org/extension/OffensiveEdge/secrets-le) or [VS Code Marketplace](https://marketplace.visualstudio.com/items?itemName=nolindnaidoo.secrets-le)
-2. Open any file (`.js`, `.ts`, `.json`, `.env`, `.py`, or any text file)
+2. Open a workspace folder in VS Code
 3. Run `Secrets-LE: Detect Secrets` (`Cmd+Alt+S` / `Ctrl+Alt+S`)
-4. Review detected secrets and sanitize if needed
+4. Review detected secrets grouped by file and type
+5. Sanitize secrets if needed using the sanitize command
 
 ## 📋 Available Commands
 
-Secrets-LE provides **5 commands** accessible via Command Palette (`Ctrl+Shift+P` / `Cmd+Shift+P`):
+Secrets-LE provides **4 commands** accessible via Command Palette (`Ctrl+Shift+P` / `Cmd+Shift+P`):
 
 ### Core Commands
 
-- **Detect Secrets** (`Cmd/Ctrl+Alt+S`) - Scan for API keys, tokens, passwords
-- **Sanitize Secrets** - Replace detected secrets with safe placeholders
+- **Detect Secrets** (`Cmd/Ctrl+Alt+S`) - Scan entire workspace for API keys, tokens, passwords
+- **Sanitize Secrets** - Replace detected secrets with safe placeholders in active file
 
 ### Settings & Help
 
@@ -174,19 +202,40 @@ Secrets-LE has minimal configuration to keep things simple. Most settings are av
 
 Key settings include:
 
-- Detection sensitivity (low, medium, high)
-- Secret type filters (API keys, passwords, tokens, private keys)
-- Sanitization replacement text
-- Deduplication options
-- Output format preferences (side-by-side, clipboard copy)
-- Safety warnings and thresholds
-- Notification levels (silent, important, all)
+- **Workspace scanning**:
+  - File patterns to scan (`workspace.scanPatterns`, default: `**/*`)
+  - Exclude patterns (`workspace.scanExcludes`, default: node_modules, .git, dist, etc.)
+  - Maximum files to scan (`workspace.scanMaxFiles`, default: 10000)
+- **Detection**:
+  - Sensitivity (low, medium, high)
+  - Secret type filters (API keys, passwords, tokens, private keys)
+- **Output**:
+  - Sanitization replacement text
+  - Deduplication options
+  - Format preferences (side-by-side, clipboard copy)
+- **Safety**:
+  - File size warnings and thresholds
+  - Notification levels (silent, important, all)
 
 For the complete list of available settings, open VS Code Settings and search for "secrets-le".
 
 ## 📁 Supported File Types
 
-**Secrets-LE works universally on any text file!** Detection uses regex patterns applied directly to text content.
+**Secrets-LE works universally on any text file in your workspace!** Detection uses regex patterns applied directly to text content. The extension scans your entire workspace and processes all text files by default.
+
+### Workspace Scanning
+
+By default, Secrets-LE scans all files (`**/*`) but automatically excludes:
+- `node_modules/**` - Dependencies
+- `.git/**` - Version control
+- `dist/**`, `build/**` - Build outputs
+- `.next/**`, `coverage/**` - Framework artifacts
+- `*.min.js`, `*.bundle.js` - Minified files
+- Lock files (`package-lock.json`, `yarn.lock`, etc.)
+
+You can customize scan patterns and exclusions in settings.
+
+### File Type Support
 
 | Category          | File Types                                                                          |
 | ----------------- | ----------------------------------------------------------------------------------- |
@@ -197,6 +246,8 @@ For the complete list of available settings, open VS Code Settings and search fo
 | **Documentation** | Markdown, Plain Text, Log Files                                                     |
 | **Shell**         | Bash, Zsh, PowerShell, Batch                                                        |
 
+**All text files are supported** - Once the extension is activated, it can scan any text file in your workspace.
+
 ### What Gets Detected
 
 **API Keys & Credentials**:
@@ -227,7 +278,7 @@ For the complete list of available settings, open VS Code Settings and search fo
 
 ## 🌍 Language Support
 
-**13 languages**: English, German, Spanish, French, Indonesian, Italian, Japanese, Korean, Portuguese (Brazil), Russian, Ukrainian, Vietnamese, Chinese (Simplified)
+**4 languages**: English (base), German, Spanish, French
 
 ## 🧩 System Requirements
 
@@ -247,18 +298,30 @@ For detailed information, see [Performance Monitoring](docs/PERFORMANCE.md).
 ## 🔧 Troubleshooting
 
 **Not detecting secrets?**  
-Ensure file is saved and check sensitivity level in settings
+- Ensure workspace folder is open (not just a file)
+- Check sensitivity level in settings (try "high" for maximum detection)
+- Verify scan patterns include your file types in settings
+
+**Scanning too many files?**  
+- Adjust `workspace.scanMaxFiles` to limit the number of files scanned
+- Add more exclude patterns to skip build artifacts or generated files
 
 **False positives?**  
-Lower sensitivity level or disable specific secret types
+- Lower sensitivity level or disable specific secret types
+- Review detected secrets - some may be example/test values
+
+**Performance issues?**  
+- Reduce `workspace.scanMaxFiles` limit
+- Add more exclude patterns to skip large directories
+- Check [Performance Monitoring](docs/PERFORMANCE.md) for optimization tips
 
 **Need help?**  
 Check [Issues](https://github.com/OffensiveEdge/secrets-le/issues) or enable logging: `secrets-le.telemetryEnabled: true`
 
 ## ❓ FAQ
 
 **What secrets are detected?**  
-15+ types including AWS, Azure, GCP, GitHub, JWT, passwords, private keys
+19 types including API keys, AWS, Azure, GCP, JWT, tokens, passwords, private keys
 
 **Does it send data anywhere?**  
 No! 100% local processing. No network requests ever
@@ -269,6 +332,9 @@ Yes! Adjust sensitivity levels and enable/disable specific secret types
 **How accurate is detection?**  
 High accuracy with configurable sensitivity to reduce false positives
 
+**Does it scan the entire workspace?**  
+Yes! By default it scans all files in your workspace, excluding common directories like node_modules and .git. You can customize scan patterns in settings.
+
 ## 📊 Testing
 
 **17 unit tests across 1 test file** • Powered by Vitest • Run with `bun run test:coverage`
@@ -279,7 +345,7 @@ High accuracy with configurable sensitivity to reduce false positives
 
 ### Test Suite Highlights
 
-- **Comprehensive secret detection** across 15+ types
+- **Comprehensive secret detection** across 19 types
 - **Sanitization validation** with replacement verification
 - **Error handling** with graceful degradation
 - **Security-focused** testing for edge cases
 
@@ -23,30 +23,30 @@ <h1>All files</h1>
         <div class='clearfix'>
 
             <div class='fl pad1y space-right2'>
-                <span class="strong">25.44% </span>
+                <span class="strong">21.82% </span>
                 <span class="quiet">Statements</span>
-                <span class='fraction'>302/1187</span>
+                <span class='fraction'>302/1384</span>
             </div>
 
 
             <div class='fl pad1y space-right2'>
-                <span class="strong">74.41% </span>
+                <span class="strong">73.56% </span>
                 <span class="quiet">Branches</span>
-                <span class='fraction'>64/86</span>
+                <span class='fraction'>64/87</span>
             </div>
 
 
             <div class='fl pad1y space-right2'>
-                <span class="strong">40.81% </span>
+                <span class="strong">40% </span>
                 <span class="quiet">Functions</span>
-                <span class='fraction'>20/49</span>
+                <span class='fraction'>20/50</span>
             </div>
 
 
             <div class='fl pad1y space-right2'>
-                <span class="strong">25.44% </span>
+                <span class="strong">21.82% </span>
                 <span class="quiet">Lines</span>
-                <span class='fraction'>302/1187</span>
+                <span class='fraction'>302/1384</span>
             </div>
 
 
@@ -84,28 +84,28 @@ <h1>All files</h1>
 	<div class="chart"><div class="cover-fill" style="width: 0%"></div><div class="cover-empty" style="width: 100%"></div></div>
 	</td>
 	<td data-value="0" class="pct low">0%</td>
-	<td data-value="96" class="abs low">0/96</td>
+	<td data-value="118" class="abs low">0/118</td>
 	<td data-value="0" class="pct low">0%</td>
 	<td data-value="2" class="abs low">0/2</td>
 	<td data-value="0" class="pct low">0%</td>
 	<td data-value="2" class="abs low">0/2</td>
 	<td data-value="0" class="pct low">0%</td>
-	<td data-value="96" class="abs low">0/96</td>
+	<td data-value="118" class="abs low">0/118</td>
 	</tr>
 
 <tr>
-	<td class="file medium" data-value="extraction"><a href="extraction/index.html">extraction</a></td>
-	<td data-value="51.89" class="pic medium">
-	<div class="chart"><div class="cover-fill" style="width: 51%"></div><div class="cover-empty" style="width: 49%"></div></div>
+	<td class="file low" data-value="extraction"><a href="extraction/index.html">extraction</a></td>
+	<td data-value="47.48" class="pic low">
+	<div class="chart"><div class="cover-fill" style="width: 47%"></div><div class="cover-empty" style="width: 53%"></div></div>
 	</td>
-	<td data-value="51.89" class="pct medium">51.89%</td>
-	<td data-value="582" class="abs medium">302/582</td>
+	<td data-value="47.48" class="pct low">47.48%</td>
+	<td data-value="636" class="abs low">302/636</td>
 	<td data-value="78.48" class="pct medium">78.48%</td>
 	<td data-value="79" class="abs medium">62/79</td>
 	<td data-value="42.85" class="pct low">42.85%</td>
 	<td data-value="42" class="abs low">18/42</td>
-	<td data-value="51.89" class="pct medium">51.89%</td>
-	<td data-value="582" class="abs medium">302/582</td>
+	<td data-value="47.48" class="pct low">47.48%</td>
+	<td data-value="636" class="abs low">302/636</td>
 	</tr>
 
 <tr>
@@ -129,13 +129,13 @@ <h1>All files</h1>
 	<div class="chart"><div class="cover-fill" style="width: 0%"></div><div class="cover-empty" style="width: 100%"></div></div>
 	</td>
 	<td data-value="0" class="pct low">0%</td>
-	<td data-value="506" class="abs low">0/506</td>
-	<td data-value="25" class="pct low">25%</td>
-	<td data-value="4" class="abs low">1/4</td>
-	<td data-value="25" class="pct low">25%</td>
-	<td data-value="4" class="abs low">1/4</td>
+	<td data-value="627" class="abs low">0/627</td>
+	<td data-value="20" class="pct low">20%</td>
+	<td data-value="5" class="abs low">1/5</td>
+	<td data-value="20" class="pct low">20%</td>
+	<td data-value="5" class="abs low">1/5</td>
 	<td data-value="0" class="pct low">0%</td>
-	<td data-value="506" class="abs low">0/506</td>
+	<td data-value="627" class="abs low">0/627</td>
 	</tr>
 
 </tbody>
@@ -146,7 +146,7 @@ <h1>All files</h1>
             <div class='footer quiet pad2 space-top1 center small'>
                 Code coverage generated by
                 <a href="https://istanbul.js.org/" target="_blank" rel="noopener noreferrer">istanbul</a>
-                at 2025-11-02T14:40:49.777Z
+                at 2025-11-02T17:05:34.031Z
             </div>
         <script src="prettify.js"></script>
         <script>