v0.1.0: initial public release

ghprowl — a multi-target watcher for credentials and internal references that leak into public GitHub.

The idea

• Rare, not random — rank candidate markers by global code-search frequency and query the rarest first. Rarity is precision.
• Two-depth ledger — deep (clone + gitleaks every cycle) vs light (track-only, auto-promoted on signal), so a wide net keeps a small, high-signal clone set.
• Escape hatch — hand-added non-public "gold" markers are always queried, and rarity-ranked like the rest.

What's here

• setup onboarding: scope → markers → FIT check → draft config (stops for review)
• discover / sweep / watch, with an --all cron dispatcher across every configured target
• gitleaks detection + issuer-aware post-filtering; live-token alerts via ntfy — the token never leaves the host
• status dashboard; topics / topics qr / topics test for alert subscriptions
• big-repo guard, per-operation flock, baseline suppression

Read the story

Rare, Not Random — the design reasoning and an A/B against a hand-tuned baseline (more recall, a third of the clone load).

---

Public data, authorized-research / defensive use only. MIT licensed.