| home |
| name |
text |
tagline |
actions |
| Compliance Scanner |
AI-Powered Security Compliance |
Automated SAST, SBOM, DAST, CVE monitoring, and code intelligence for your repositories |
| theme |
text |
link |
| brand |
Get Started |
/guide/getting-started |
|
| theme |
text |
link |
| alt |
Features |
/features/overview |
|
|
|
| title |
details |
| Static Analysis (SAST) |
Automated security scanning with Semgrep, detecting vulnerabilities across multiple languages including OWASP patterns, GDPR issues, and OAuth misconfigurations. |
|
| title |
details |
| SBOM & License Compliance |
Full software bill of materials with dependency inventory, vulnerability tracking, license compliance analysis, and export to CycloneDX/SPDX formats. |
|
| title |
details |
| Dynamic Testing (DAST) |
Black-box security testing of live web applications and APIs. Crawls endpoints, fuzzes parameters, and detects SQL injection, XSS, SSRF, and auth bypass vulnerabilities. |
|
| title |
details |
| Code Knowledge Graph |
Interactive visualization of your codebase structure. Understand function calls, class hierarchies, and module dependencies with community detection. |
|
| title |
details |
| Impact Analysis |
When a vulnerability is found, see exactly which entry points and call chains are affected. Understand blast radius before prioritizing fixes. |
|
| title |
details |
| AI-Powered Chat |
Ask questions about your codebase using RAG-powered AI. Code is embedded as vectors and retrieved contextually to give accurate, source-referenced answers. |
|
|
Sharang Parnerkar
7e12d1433a