feat: add scrub command to remove credentials from AI CLI session logs

[c0tton-fluff]

Summary

• Ports Python secret-scrubber as native bagel scrub command
• 24 regex patterns matching all credential types (SSH keys, AWS, GitHub, JWT, etc.)
• Safe by default: dry-run unless --confirm is passed
• Per-pattern prefix checks skip regexes when no prefix string appears
• Concurrent file processing via errgroup
• Byte-identical output vs Python scrubber (verified on real session data)
• CLA signed

Usage

bagel scrub # dry run
bagel scrub --confirm # apply redactions
bagel scrub --confirm --grace-minutes 0 # include recent files
bagel scrub --file --confirm # single file

Files added

• pkg/scrubber/patterns.go - 24 compiled regex patterns with prefix strings
• pkg/scrubber/scrubber.go - core logic with prefix check + concurrency
• pkg/scrubber/scrubber_test.go - table-driven tests for every pattern
• cmd/bagel/scrub.go - Cobra command wiring
• CLA_SIGNATURES.md - signed CLA

Test plan

• go test -race ./pkg/scrubber/... -- 14 test functions, all pass
• go vet ./... -- clean
• Full project test suite -- zero regressions
• Parity: byte-identical MD5 vs Python scrubber on real session data
• Performance: 1912 files in 15s with concurrency + prefix optimization

Closes #22

[c0tton-fluff]

Pushed a follow-up commit fixing three issues from code review:

1. Context propagation -- Run() and FindEligibleFiles() now accept context.Context as first param, replacing context.Background() with the caller's context (CTX-1/CTX-2)
2. Silent walk errors -- filepath.Walk callback now logs unreadable entries via log.Warn() instead of silently returning nil
3. Logger pattern -- Removed Logger from RunInput struct, now extracted from context via zerolog.Ctx(ctx) to match the rest of the codebase

All tests pass with -race, go vet clean.

[c0tton-fluff]

Pushed UX overhaul after having a quick chat with François before Monday's review.

1. Interactive prompt - Running bagel scrub with no flags now shows what would be scrubbed and asks for confirmation, instead of requiring --confirm. Safer default UX.
2. Shell history support - Scrub now targets ~/.bash_history and ~/.zsh_history in addition to AI CLI session logs (Claude Code, Codex, Cursor).
3. Flag rename - --confirm replaced with --yes (skip prompt) and --dry-run (preview only), matching standard CLI conventions (apt, terraform, etc.).
4. README updated - Scrub section reflects new flags and shell history targets.

All tests pass with -race, linter clean. Hope all is well and you had a good weekend!

[SUSTAPLE117]

@c0tton-fluff this is reimplementing a lot of the existing flow that bagel uses to detect secrets in those locations. We should leverage existing scanning capabilities instead of reimplementing everything like this

[c0tton-fluff]

Hey @SUSTAPLE117

Apologies for late reply, it has been a super busy week. I am looking into it and realising my mistake at the original approach. I will refactor and rework it so it is much, much better and I hope to contribute in best way! 💪 🧠

[SUSTAPLE117]

@c0tton-fluff no worries your contribution is very much appreciated!

[SUSTAPLE117]

Bagel already builds when scanning a File Index of all the interesting files we look for. It's based on that file index that detections are done when running the scanning so you don't need to reimplement this here. The redact command should piggy back on the existing file index and scanning

[SUSTAPLE117]

Those should be added to the file index

[SUSTAPLE117]

As mentionned the existing scanning in Bagel should be leveraged to do this. The scrubbing should be something done after file index is built and bagel has scanned for findings and then we scrub the values found per finding that can be scrubbed

[Mike-clst]

On it! I will rewrite what is needed. 😃

[SUSTAPLE117]

@c0tton-fluff lgtm just need to fix the test on windows