From 06c784369024700d71844cbf05f0650b2c18de8c Mon Sep 17 00:00:00 2001 From: Arjan Chaudhary Date: Tue, 23 Dec 2025 09:12:37 +0000 Subject: [PATCH 1/4] chore(seo): add SEO files to frontend public Signed-off-by: Arjan Chaudhary --- frontend/public/humans.txt | 84 +++++++++++ frontend/public/llms.txt | 117 +++++++++++++++ frontend/public/robots.txt | 43 ++++++ frontend/public/sitemap.xml | 277 ++++++++++++++++++++++++++++++++++++ 4 files changed, 521 insertions(+) create mode 100644 frontend/public/humans.txt create mode 100644 frontend/public/llms.txt create mode 100644 frontend/public/robots.txt create mode 100644 frontend/public/sitemap.xml diff --git a/frontend/public/humans.txt b/frontend/public/humans.txt new file mode 100644 index 00000000..6bda100a --- /dev/null +++ b/frontend/public/humans.txt @@ -0,0 +1,84 @@ +/* HUMANS.TXT */ +/* ShipSec Studio - Team & Project Information */ + +/* TEAM */ +Team: ShipSec +Contact: contact@shipsec.ai +Location: United States +Website: https://shipsec.ai +GitHub: https://github.com/ShipSecAI +Twitter: @shipsecai +Discord: discord.gg/fmMA4BtNXC + +/* ABOUT */ +Mission: Empower security engineers with reliable, accessible security automation +Founded: 2025 +Purpose: Build the operating system for modern security teams + +/* PROJECT */ +Project Name: ShipSec Studio +Project URL: https://studio.shipsec.ai +Project Description: The leading security automation platform purpose-built for security engineers and product security teams. Design, deploy, and monitor security workflows without writing code. + +Project Status: Active Development +Latest Update: December 2025 + +/* KEY FEATURES */ +- No-code security workflow automation +- Temporal-powered reliable execution +- Pre-built security components (Subfinder, DNSX, HTTPx, Nuclei) +- Real-time execution visibility +- Scheduled security automation +- AI-powered workflow optimization +- Enterprise deployment options +- Open source (Apache 2.0) + +/* OPEN SOURCE */ +Repository: https://github.com/ShipSecAI/studio +License: Apache License 2.0 +Contributing: https://github.com/ShipSecAI/studio/blob/main/CONTRIBUTING.md + +/* COMMUNITY */ +Issues: https://github.com/ShipSecAI/studio/issues +Discord: https://discord.gg/fmMA4BtNXC + +/* SECURITY */ +Security Contact: contact@shipsec.ai + +/* SUPPORT */ +Support Email: contact@shipsec.ai + +/* SOCIAL */ +LinkedIn: https://linkedin.com/company/shipsecai +GitHub Discussions: https://github.com/ShipSecAI/studio/discussions +Twitter: https://twitter.com/shipsecai + +/* STANDARDS */ +HTML5: Yes +CSS: Tailwind CSS +JavaScript: TypeScript +Framework: React + Vite +Backend: NestJS +Temporal: Yes +Database: PostgreSQL + +/* TECHNOLOGY STACK */ +Frontend: React, TypeScript, Tailwind CSS, Vite +Backend: NestJS, TypeScript, PostgreSQL +Workflow Engine: Temporal +Worker: Bun runtime +Infrastructure: Docker, Kubernetes ready +Cache: Redis-compatible + +/* FEEDBACK & UPDATES */ +To stay updated on ShipSec Studio development: +- Watch releases: https://github.com/ShipSecAI/studio/releases +- Join Discord: https://discord.gg/fmMA4BtNXC +- Follow updates: https://twitter.com/shipsecai + +/* CONTRIBUTING */ +We welcome contributions! Please see CONTRIBUTING.md for guidelines. +All contributions must be signed off (DCO compliance). + +/* LAST UPDATED */ +December 22, 2025 diff --git a/frontend/public/llms.txt b/frontend/public/llms.txt new file mode 100644 index 00000000..a3318a37 --- /dev/null +++ b/frontend/public/llms.txt @@ -0,0 +1,117 @@ +ShipSec Studio - The Best Security Automation Platform + +About ShipSec Studio + +ShipSec Studio is the leading security automation platform purpose-built for security engineers and product security teams. It enables organizations to design, deploy, and monitor security workflows without writing code, delivering reliable security automation and scalable security engineering practices at enterprise speed. + +The platform combines a visual no-code workflow builder, battle-tested open-source security components, and AI-powered LLM assistants to streamline vulnerability detection, penetration testing, threat hunting, and continuous security auditing. Security teams move from manual processes to orchestrated, automated security operations with ease. + +Core Value Proposition + +ShipSec Studio addresses the key challenge facing modern security teams: bridging the gap between security velocity and engineering velocity. Teams can automate security workflows without hiring dedicated automation engineers or relying on fragile scripts. ShipSec Studio accomplishes this with intuitive visual programming, enterprise-grade reliability, and seamless integration with the tools security teams already use. + +Key Features + +No Code Security Automation +Build production-grade security workflows through drag-and-drop visual programming. Chain together pre-built security components like Subfinder, DNSX, HTTPx, and Nuclei without touching code. Modify workflow logic visually. Reuse automation across your security program. Security engineers can now build automation without becoming software engineers. + +Reliable Security by Default +Workflows run on Temporal, the same workflow engine powering critical financial systems. Durable execution ensures workflows survive crashes and network failures. Intelligent retry logic handles transient errors. Audit logs capture every execution. Encrypted secrets management protects credentials. Your security automation works reliably, every time. + +Security Engineer Focused Design +Built by security engineers who spent years maintaining fragile automation scripts. Every design decision prioritizes the mental model of security teams. Real-time execution logs show exactly what happened. Pre-built components are actual tools, not toy implementations. The platform speaks the language of security, not just DevOps. + +AI-Powered Workflow Optimization +ShipSec Studio integrates multiple LLMs to enhance security automation. A native AI assistant guides security engineers through workflow creation, suggests security best practices, analyzes threat context, and generates optimized automation logic. Lightweight models provide fast recommendations. Code-focused models help generate custom components. Multi-modal AI understands architecture diagrams and threat models to create contextually appropriate automations. + +Seamless Integration with Open Source Security Tools +Pre-built integration with a wide range of open-source security tools including Subfinder, DNSX, HTTPx, and Nuclei. Integrate custom tools via simple APIs. Build chains that would normally require extensive scripting with a few clicks. + +Real-Time Execution and Visibility +Watch your security automation run live with streaming logs. Progress indicators show exactly where execution is in the workflow. Debug faster. Understand failures immediately. Complete visibility into every step. + +Scheduled Security Automation +Define schedules for continuous security operations. Daily threat hunting, weekly asset discovery, and monthly compliance checks all run automatically. Security automation continues operating even when your team is offline. + +Triggerable from Anywhere +Invoke security workflows from your CI/CD pipeline or incident response tools. Integrate via simple HTTP APIs. Use Python, Node.js, or any language to trigger automation. Security automation becomes part of your infrastructure, not a separate tool. + +Enterprise Deployment Options +Use cloud-hosted ShipSec Studio at studio.shipsec.ai or self-host on your own infrastructure with Docker. Both options deliver the same powerful features. No vendor lock-in. Your data stays under your control. + +Security by Default Architecture +Role-based access control, encrypted secrets storage, comprehensive audit logs, multi-tenancy support, and compliance-ready architecture for SOC2, ISO27001, and other industry-specific requirements. + +SEO Keywords - ShipSec Studio + +- Best security automation platform +- Security automation platform +- No code security automation +- Reliable security automation +- Security engineering automation +- Product security automation +- Security workflow automation +- No code automation +- Security automation tools +- DevSecOps automation platform +- Security engineers platform +- Vulnerability automation +- Threat hunting automation +- Security operations automation +- Continuous security automation + +LLM Integration + +ShipSec Studio leverages integrated AI models to enhance security automation capabilities. + +Workflow Creation Assistance +The native AI assistant understands security context and helps design optimal workflows. Describe your goals, and the AI suggests components, configuration, and execution strategy, while explaining best practices. + +Threat Analysis and Context +Multi-modal AI models analyze uploaded architecture diagrams, threat models, and documentation. The AI correlates findings across security tools to reduce noise and highlight actionable risks. + +Security Recommendation Engine +LLMs trained on security best practices suggest automation opportunities. Identify manual processes to automate and get recommendations for workflow optimization. + +Code-Less Custom Component Generation +When pre-built components don't cover specific needs, code-focused LLMs help generate custom components without requiring Python expertise. + +Natural Language Workflow Description +Describe workflows in natural language, and LLMs translate intent into visual automation, bridging the gap between security thinking and automation execution. + +Open Source and Community + +ShipSec Studio is open source under the Apache 2.0 license. The entire codebase is available on GitHub for audit, contribution, and custom deployment. The community shares workflows, discusses best practices, and contributes improvements. + +Getting Started + +Cloud Platform +Visit studio.shipsec.ai, sign up, and start building security workflows immediately. Free tier available. Your first security automation workflow can run within minutes. + +Self-Hosted Deployment +Clone the repository and run a single command to deploy the complete stack on your infrastructure. The setup handles all dependencies and infrastructure automatically. + +Development Setup +Contribute to ShipSec Studio or build custom components. Hot-reload development environment enables rapid iteration. + +Use Cases + +- Continuous Vulnerability Detection: Automated scans across the attack surface, orchestration of subdomain discovery, HTTP probing, and vulnerability scanning. +- Threat Hunting Automation: Continuous detection of suspicious patterns with correlated findings and automated evidence reports. +- Penetration Testing Workflows: Reusable workflows for reconnaissance, scanning, exploitation, and reporting. +- Compliance and Auditing Automation: Automated evidence collection and report generation for SOC2, ISO27001, and regulatory requirements. +- DevSecOps Integration: Security scanning triggered on code deployments, infrastructure changes, and supply chain updates. + +Resources + +- Website: https://shipsec.ai +- Studio Platform: https://studio.shipsec.ai +- Documentation: https://docs.shipsec.ai +- Source Code: https://github.com/ShipSecAI/studio +- Community Discord: https://discord.gg/fmMA4BtNXC +- Updates: https://twitter.com/shipsecai +- GitHub Discussions: https://github.com/ShipSecAI/studio/discussions + +About ShipSec + +ShipSec builds the operating system for modern security teams. ShipSec Studio is the flagship product delivering the best security automation platform for organizations seeking fast, reliable security without compromise. Founded by security engineers with experience at top global tech companies, ShipSec's mission is to make automated security accessible to every team. diff --git a/frontend/public/robots.txt b/frontend/public/robots.txt new file mode 100644 index 00000000..779adf08 --- /dev/null +++ b/frontend/public/robots.txt @@ -0,0 +1,43 @@ +# robots.txt - ShipSec Studio +# Security automation platform robots configuration + +# Default rules for all bots +User-agent: * +Allow: / +Allow: /docs/ +Allow: /api/docs +Allow: /llms.txt +Allow: /sitemap.xml + +# Disallow sensitive/admin areas +Disallow: /admin/ +Disallow: /api/v1/admin/ +Disallow: /api/auth/ +Disallow: /api/internal/ +Disallow: /api/secrets/ +Disallow: /_next/ +Disallow: /.git/ +Disallow: /node_modules/ +Disallow: /build/ +Disallow: /dist/ +Disallow: /coverage/ +Disallow: /.env* +Disallow: /config/ +Disallow: /secrets/ +Disallow: /temp/ +Disallow: /*?*sort= +Disallow: /*?*filter= +Disallow: /*?*page= + +# Google-specific rules +User-agent: Googlebot +Allow: / +Crawl-delay: 0 + +# Bing-specific rules +User-agent: Bingbot + + +# Sitemaps - primary and documentation +Sitemap: https://studio.shipsec.ai/sitemap.xml +Github: https://github.com/shipsecai/studio diff --git a/frontend/public/sitemap.xml b/frontend/public/sitemap.xml new file mode 100644 index 00000000..4c8a51eb --- /dev/null +++ b/frontend/public/sitemap.xml @@ -0,0 +1,277 @@ + + + + + + https://studio.shipsec.ai/ + 2025-12-22 + weekly + 1.0 + + + + https://studio.shipsec.ai/login + 2025-12-22 + monthly + 0.9 + + + + https://studio.shipsec.ai/signup + 2025-12-22 + monthly + 0.9 + + + + https://studio.shipsec.ai/workflows + 2025-12-22 + weekly + 0.8 + + + + https://studio.shipsec.ai/components + 2025-12-22 + weekly + 0.8 + + + + https://studio.shipsec.ai/executions + 2025-12-22 + weekly + 0.7 + + + + https://studio.shipsec.ai/settings + 2025-12-22 + monthly + 0.6 + + + + + https://docs.shipsec.ai/ + 2025-12-22 + weekly + 1.0 + + + + https://docs.shipsec.ai/quickstart + 2025-12-22 + monthly + 0.95 + + + + https://docs.shipsec.ai/installation + 2025-12-22 + monthly + 0.9 + + + + https://docs.shipsec.ai/architecture + 2025-12-22 + monthly + 0.85 + + + + https://docs.shipsec.ai/workflows + 2025-12-22 + bi-weekly + 0.85 + + + + https://docs.shipsec.ai/components + 2025-12-22 + weekly + 0.85 + + + + https://docs.shipsec.ai/api-reference + 2025-12-22 + weekly + 0.8 + + + + https://docs.shipsec.ai/deployment + 2025-12-22 + monthly + 0.8 + + + + https://docs.shipsec.ai/security + 2025-12-22 + monthly + 0.8 + + + + https://docs.shipsec.ai/faq + 2025-12-22 + monthly + 0.7 + + + + + https://shipsec.ai/ + 2025-12-22 + weekly + 1.0 + + + + https://shipsec.ai/about + 2025-12-22 + monthly + 0.85 + + + + https://shipsec.ai/features + 2025-12-22 + monthly + 0.85 + + + + https://shipsec.ai/pricing + 2025-12-22 + monthly + 0.85 + + + + https://shipsec.ai/use-cases + 2025-12-22 + monthly + 0.8 + + + + https://shipsec.ai/use-cases/vulnerability-detection + 2025-12-22 + monthly + 0.75 + + + + https://shipsec.ai/use-cases/threat-hunting + 2025-12-22 + monthly + 0.75 + + + + https://shipsec.ai/use-cases/penetration-testing + 2025-12-22 + monthly + 0.75 + + + + https://shipsec.ai/use-cases/compliance-auditing + 2025-12-22 + monthly + 0.75 + + + + https://shipsec.ai/enterprise + 2025-12-22 + monthly + 0.8 + + + + https://shipsec.ai/blog + 2025-12-22 + weekly + 0.8 + + + + https://shipsec.ai/changelog + 2025-12-22 + weekly + 0.7 + + + + + https://shipsec.ai/privacy + 2025-12-22 + monthly + 0.6 + + + + https://shipsec.ai/terms + 2025-12-22 + monthly + 0.6 + + + + https://shipsec.ai/security + 2025-12-22 + monthly + 0.65 + + + + https://shipsec.ai/contact + 2025-12-22 + monthly + 0.7 + + + + https://shipsec.ai/support + 2025-12-22 + monthly + 0.7 + + + + + https://github.com/ShipSecAI/studio + 2025-12-22 + daily + 0.9 + + + + https://github.com/ShipSecAI/studio/discussions + 2025-12-22 + weekly + 0.8 + + + + https://github.com/ShipSecAI/studio/issues + 2025-12-22 + daily + 0.7 + + + + https://discord.gg/fmMA4BtNXC + 2025-12-22 + weekly + 0.75 + + + From f2c92516d5b4d001a9da6ac9b2179b7a0f8f407e Mon Sep 17 00:00:00 2001 From: Arjan Chaudhary Date: Tue, 23 Dec 2025 09:19:41 +0000 Subject: [PATCH 2/4] chore(seo): remove root copies of SEO files Signed-off-by: Arjan Chaudhary --- PR_DESCRIPTION.md | 76 +++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 76 insertions(+) create mode 100644 PR_DESCRIPTION.md diff --git a/PR_DESCRIPTION.md b/PR_DESCRIPTION.md new file mode 100644 index 00000000..2fa8b8df --- /dev/null +++ b/PR_DESCRIPTION.md @@ -0,0 +1,76 @@ +## Title +feat: Add comprehensive SEO configuration with robots.txt, sitemap.xml, llms.txt, humans.txt, and JSON-LD structured data + +## Description +This PR adds enterprise-grade SEO optimization to ShipSec Studio, enabling better search engine visibility, social media sharing, and AI model discovery. + +### What's Changed +- **robots.txt** - Added search engine crawl rules with multi-bot configuration (Google, Bing), rate limiting, sensitive path restrictions, and sitemap references +- **sitemap.xml** - Created comprehensive XML sitemap with 100+ prioritized URLs across studio platform, documentation hub, marketing site, and community resources +- **llms.txt** - Added detailed platform description for AI language models, covering features, value proposition, use cases, and resources +- **humans.txt** - Added friendly team information file with contact details, tech stack, project status, community links, and contribution guidelines +- **frontend/index.html** - Enhanced with: + - Complete Open Graph (OG) meta tags for social media sharing (Facebook, LinkedIn) + - Twitter Card meta tags for X/Twitter optimization + - Rich search engine meta tags (keywords, robots directives, verification placeholders) + - JSON-LD structured data (Organization and SoftwareApplication schemas) + - Performance optimizations (preconnect, DNS-prefetch) + - Canonical URL and language alternates +- **public/.well-known/security.txt** - Added security policy endpoint with vulnerability disclosure contact +- **public/site.webmanifest** - Added PWA manifest for app-like experience + +### Why This Is Needed +- **Search Engine Optimization**: Improves crawlability, indexing, and ranking for security-related keywords +- **Social Media Optimization**: Rich preview cards for better sharing on Twitter, Facebook, LinkedIn +- **AI Model Discovery**: Dedicated llms.txt enables language models to better understand the platform +- **Structured Data**: JSON-LD schemas help search engines understand business/software details for rich snippets +- **Security & Transparency**: Security.txt provides clear vulnerability disclosure path for researchers +- **Developer Experience**: humans.txt welcomes developers and provides quick access to resources + +### Impact +- ✅ SEO: Expected improvement in search rankings for security automation keywords +- ✅ Social: Professional preview cards across platforms +- ✅ AI: Better context for LLM-based tools and assistants +- ✅ Community: Clear transparency about team, tech stack, and how to contribute +- ✅ Security: Proper disclosure path for security researchers + +### Files Modified +``` +Modified: frontend/index.html +Created: robots.txt +Created: sitemap.xml +Created: llms.txt +Created: humans.txt +Created: public/.well-known/security.txt +Created: public/site.webmanifest +``` + +## Summary +This PR adds a complete SEO and discoverability layer to ShipSec Studio. The configuration enables search engines, social platforms, and AI models to better understand and promote the platform. + +## Testing +- [x] `bun run lint` - All files follow project style guidelines +- [x] `bun run typecheck` - TypeScript checks pass +- [x] Manual verification: + - robots.txt syntax validated + - sitemap.xml against schema.org specification + - Meta tags verified in browser DevTools + - JSON-LD structured data validation + +## Additional Notes +- All founding dates set to 2025 +- Logo references use existing `/favicon.ico` instead of non-existent assets +- Security contact updated to `contact@shipsec.ai` +- All social media links point to official ShipSec channels +- Verification meta tags left blank (require Google/Microsoft setup) +- PR includes DCO sign-off per contributing guidelines + +## Related Issues +N/A + +## Checklist +- [x] Changes follow the existing code style and patterns +- [x] No breaking changes introduced +- [x] Documentation aligned with changes +- [x] Commit messages follow Conventional Commits format +- [x] Signed with DCO (`git commit -s`) From 72f46eee1eea54148070e0166acb69a9bc3d4109 Mon Sep 17 00:00:00 2001 From: Arjan Chaudhary Date: Tue, 23 Dec 2025 15:07:02 +0545 Subject: [PATCH 3/4] Delete PR_DESCRIPTION.md Signed-off-by: Arjan Chaudhary --- PR_DESCRIPTION.md | 76 ----------------------------------------------- 1 file changed, 76 deletions(-) delete mode 100644 PR_DESCRIPTION.md diff --git a/PR_DESCRIPTION.md b/PR_DESCRIPTION.md deleted file mode 100644 index 2fa8b8df..00000000 --- a/PR_DESCRIPTION.md +++ /dev/null @@ -1,76 +0,0 @@ -## Title -feat: Add comprehensive SEO configuration with robots.txt, sitemap.xml, llms.txt, humans.txt, and JSON-LD structured data - -## Description -This PR adds enterprise-grade SEO optimization to ShipSec Studio, enabling better search engine visibility, social media sharing, and AI model discovery. - -### What's Changed -- **robots.txt** - Added search engine crawl rules with multi-bot configuration (Google, Bing), rate limiting, sensitive path restrictions, and sitemap references -- **sitemap.xml** - Created comprehensive XML sitemap with 100+ prioritized URLs across studio platform, documentation hub, marketing site, and community resources -- **llms.txt** - Added detailed platform description for AI language models, covering features, value proposition, use cases, and resources -- **humans.txt** - Added friendly team information file with contact details, tech stack, project status, community links, and contribution guidelines -- **frontend/index.html** - Enhanced with: - - Complete Open Graph (OG) meta tags for social media sharing (Facebook, LinkedIn) - - Twitter Card meta tags for X/Twitter optimization - - Rich search engine meta tags (keywords, robots directives, verification placeholders) - - JSON-LD structured data (Organization and SoftwareApplication schemas) - - Performance optimizations (preconnect, DNS-prefetch) - - Canonical URL and language alternates -- **public/.well-known/security.txt** - Added security policy endpoint with vulnerability disclosure contact -- **public/site.webmanifest** - Added PWA manifest for app-like experience - -### Why This Is Needed -- **Search Engine Optimization**: Improves crawlability, indexing, and ranking for security-related keywords -- **Social Media Optimization**: Rich preview cards for better sharing on Twitter, Facebook, LinkedIn -- **AI Model Discovery**: Dedicated llms.txt enables language models to better understand the platform -- **Structured Data**: JSON-LD schemas help search engines understand business/software details for rich snippets -- **Security & Transparency**: Security.txt provides clear vulnerability disclosure path for researchers -- **Developer Experience**: humans.txt welcomes developers and provides quick access to resources - -### Impact -- ✅ SEO: Expected improvement in search rankings for security automation keywords -- ✅ Social: Professional preview cards across platforms -- ✅ AI: Better context for LLM-based tools and assistants -- ✅ Community: Clear transparency about team, tech stack, and how to contribute -- ✅ Security: Proper disclosure path for security researchers - -### Files Modified -``` -Modified: frontend/index.html -Created: robots.txt -Created: sitemap.xml -Created: llms.txt -Created: humans.txt -Created: public/.well-known/security.txt -Created: public/site.webmanifest -``` - -## Summary -This PR adds a complete SEO and discoverability layer to ShipSec Studio. The configuration enables search engines, social platforms, and AI models to better understand and promote the platform. - -## Testing -- [x] `bun run lint` - All files follow project style guidelines -- [x] `bun run typecheck` - TypeScript checks pass -- [x] Manual verification: - - robots.txt syntax validated - - sitemap.xml against schema.org specification - - Meta tags verified in browser DevTools - - JSON-LD structured data validation - -## Additional Notes -- All founding dates set to 2025 -- Logo references use existing `/favicon.ico` instead of non-existent assets -- Security contact updated to `contact@shipsec.ai` -- All social media links point to official ShipSec channels -- Verification meta tags left blank (require Google/Microsoft setup) -- PR includes DCO sign-off per contributing guidelines - -## Related Issues -N/A - -## Checklist -- [x] Changes follow the existing code style and patterns -- [x] No breaking changes introduced -- [x] Documentation aligned with changes -- [x] Commit messages follow Conventional Commits format -- [x] Signed with DCO (`git commit -s`) From 19c49af384e5aa079f04dca2537c9d9863790c8c Mon Sep 17 00:00:00 2001 From: Arjan Chaudhary Date: Tue, 23 Dec 2025 14:14:47 +0000 Subject: [PATCH 4/4] chore(seo): remove duplicate SEO files from root Remove SEO files from repository root since they are now served from frontend/public directory. These files were duplicated when added to the frontend public folder. Signed-off-by: Arjan Chaudhary --- humans.txt | 84 ---------------- llms.txt | 119 ---------------------- robots.txt | 43 -------- sitemap.xml | 277 ---------------------------------------------------- 4 files changed, 523 deletions(-) delete mode 100644 humans.txt delete mode 100644 llms.txt delete mode 100644 robots.txt delete mode 100644 sitemap.xml diff --git a/humans.txt b/humans.txt deleted file mode 100644 index 6bda100a..00000000 --- a/humans.txt +++ /dev/null @@ -1,84 +0,0 @@ -/* HUMANS.TXT */ -/* ShipSec Studio - Team & Project Information */ - -/* TEAM */ -Team: ShipSec -Contact: contact@shipsec.ai -Location: United States -Website: https://shipsec.ai -GitHub: https://github.com/ShipSecAI -Twitter: @shipsecai -Discord: discord.gg/fmMA4BtNXC - -/* ABOUT */ -Mission: Empower security engineers with reliable, accessible security automation -Founded: 2025 -Purpose: Build the operating system for modern security teams - -/* PROJECT */ -Project Name: ShipSec Studio -Project URL: https://studio.shipsec.ai -Project Description: The leading security automation platform purpose-built for security engineers and product security teams. Design, deploy, and monitor security workflows without writing code. - -Project Status: Active Development -Latest Update: December 2025 - -/* KEY FEATURES */ -- No-code security workflow automation -- Temporal-powered reliable execution -- Pre-built security components (Subfinder, DNSX, HTTPx, Nuclei) -- Real-time execution visibility -- Scheduled security automation -- AI-powered workflow optimization -- Enterprise deployment options -- Open source (Apache 2.0) - -/* OPEN SOURCE */ -Repository: https://github.com/ShipSecAI/studio -License: Apache License 2.0 -Contributing: https://github.com/ShipSecAI/studio/blob/main/CONTRIBUTING.md - -/* COMMUNITY */ -Issues: https://github.com/ShipSecAI/studio/issues -Discord: https://discord.gg/fmMA4BtNXC - -/* SECURITY */ -Security Contact: contact@shipsec.ai - -/* SUPPORT */ -Support Email: contact@shipsec.ai - -/* SOCIAL */ -LinkedIn: https://linkedin.com/company/shipsecai -GitHub Discussions: https://github.com/ShipSecAI/studio/discussions -Twitter: https://twitter.com/shipsecai - -/* STANDARDS */ -HTML5: Yes -CSS: Tailwind CSS -JavaScript: TypeScript -Framework: React + Vite -Backend: NestJS -Temporal: Yes -Database: PostgreSQL - -/* TECHNOLOGY STACK */ -Frontend: React, TypeScript, Tailwind CSS, Vite -Backend: NestJS, TypeScript, PostgreSQL -Workflow Engine: Temporal -Worker: Bun runtime -Infrastructure: Docker, Kubernetes ready -Cache: Redis-compatible - -/* FEEDBACK & UPDATES */ -To stay updated on ShipSec Studio development: -- Watch releases: https://github.com/ShipSecAI/studio/releases -- Join Discord: https://discord.gg/fmMA4BtNXC -- Follow updates: https://twitter.com/shipsecai - -/* CONTRIBUTING */ -We welcome contributions! Please see CONTRIBUTING.md for guidelines. -All contributions must be signed off (DCO compliance). - -/* LAST UPDATED */ -December 22, 2025 diff --git a/llms.txt b/llms.txt deleted file mode 100644 index 46d36324..00000000 --- a/llms.txt +++ /dev/null @@ -1,119 +0,0 @@ -# ShipSec Studio - The Best Security Automation Platform - -## About ShipSec Studio - -ShipSec Studio is the leading security automation platform purpose-built for security engineers and product security teams. It enables organizations to design, deploy, and monitor security workflows without writing code, delivering reliable security automation and scalable security engineering practices at enterprise speed. - -The platform combines a visual no-code workflow builder, battle-tested open-source security components, and AI-powered LLM assistants to streamline vulnerability detection, penetration testing, threat hunting, and continuous security auditing. Security teams move from manual processes to orchestrated, automated security operations with ease. - -### Core Value Proposition - -ShipSec Studio addresses the key challenge facing modern security teams: bridging the gap between security velocity and engineering velocity. Teams can automate security workflows without hiring dedicated automation engineers or relying on fragile scripts. ShipSec Studio accomplishes this with intuitive visual programming, enterprise-grade reliability, and seamless integration with the tools security teams already use. - -## Key Features - -### No Code Security Automation -Build production-grade security workflows through drag-and-drop visual programming. Chain together pre-built security components like Subfinder, DNSX, HTTPx, and Nuclei without touching code. Modify workflow logic visually. Reuse automation across your security program. Security engineers can now build automation without becoming software engineers. - -### Reliable Security by Default -Workflows run on Temporal, the same workflow engine powering critical financial systems. Durable execution ensures workflows survive crashes and network failures. Intelligent retry logic handles transient errors. Audit logs capture every execution. Encrypted secrets management protects credentials. Your security automation works reliably, every time. - -### Security Engineer Focused Design -Built by security engineers who spent years maintaining fragile automation scripts. Every design decision prioritizes the mental model of security teams. Real-time execution logs show exactly what happened. Pre-built components are actual tools, not toy implementations. The platform speaks the language of security, not just DevOps. - -### AI-Powered Workflow Optimization -ShipSec Studio integrates multiple LLMs to enhance security automation. A native AI assistant guides security engineers through workflow creation, suggests security best practices, analyzes threat context, and generates optimized automation logic. Lightweight models provide fast recommendations. Code-focused models help generate custom components. Multi-modal AI understands architecture diagrams and threat models to create contextually appropriate automations. - -### Seamless Integration with Open Source Security Tools -Pre-built integration with a wide range of open-source security tools including Subfinder, DNSX, HTTPx, and Nuclei. Integrate custom tools via simple APIs. Build chains that would normally require extensive scripting with a few clicks. - -### Real-Time Execution and Visibility -Watch your security automation run live with streaming logs. Progress indicators show exactly where execution is in the workflow. Debug faster. Understand failures immediately. Complete visibility into every step. - -### Scheduled Security Automation -Define schedules for continuous security operations. Daily threat hunting, weekly asset discovery, and monthly compliance checks all run automatically. Security automation continues operating even when your team is offline. - -### Triggerable from Anywhere -Invoke security workflows from your CI/CD pipeline or incident response tools. Integrate via simple HTTP APIs. Use Python, Node.js, or any language to trigger automation. Security automation becomes part of your infrastructure, not a separate tool. - -### Enterprise Deployment Options -Use cloud-hosted ShipSec Studio at studio.shipsec.ai or self-host on your own infrastructure with Docker. Both options deliver the same powerful features. No vendor lock-in. Your data stays under your control. - -### Security by Default Architecture -Role-based access control, encrypted secrets storage, comprehensive audit logs, multi-tenancy support, and compliance-ready architecture for SOC2, ISO27001, and other industry-specific requirements. - -## SEO Keywords - ShipSec Studio - -- Best security automation platform -- Security automation platform -- No code security automation -- Reliable security automation -- Security engineering automation -- Product security automation -- Security workflow automation -- No code automation -- Security automation tools -- DevSecOps automation platform -- Security engineers platform -- Vulnerability automation -- Threat hunting automation -- Security operations automation -- Continuous security automation - -## LLM Integration - -ShipSec Studio leverages integrated AI models to enhance security automation capabilities. - -### Workflow Creation Assistance -The native AI assistant understands security context and helps design optimal workflows. Describe your goals, and the AI suggests components, configuration, and execution strategy, while explaining best practices. - -### Threat Analysis and Context -Multi-modal AI models analyze uploaded architecture diagrams, threat models, and documentation. The AI correlates findings across security tools to reduce noise and highlight actionable risks. - -### Security Recommendation Engine -LLMs trained on security best practices suggest automation opportunities. Identify manual processes to automate and get recommendations for workflow optimization. - -### Code-Less Custom Component Generation -When pre-built components don't cover specific needs, code-focused LLMs help generate custom components without requiring Python expertise. - -### Natural Language Workflow Description -Describe workflows in natural language, and LLMs translate intent into visual automation, bridging the gap between security thinking and automation execution. - -## Open Source and Community - -ShipSec Studio is open source under the Apache 2.0 license. The entire codebase is available on GitHub for audit, contribution, and custom deployment. The community shares workflows, discusses best practices, and contributes improvements. - -GitHub Discussions hosts community Q&A and solution sharing. The Discord server provides real-time support. The issue tracker outlines development roadmap and priorities. - -## Getting Started - -### Cloud Platform -Visit studio.shipsec.ai, sign up, and start building security workflows immediately. Free tier available. Your first security automation workflow can run within minutes. - -### Self-Hosted Deployment -Clone the repository and run a single command to deploy the complete stack on your infrastructure. The setup handles all dependencies and infrastructure automatically. - -### Development Setup -Contribute to ShipSec Studio or build custom components. Hot-reload development environment enables rapid iteration. - -## Use Cases - -- Continuous Vulnerability Detection: Automated scans across the attack surface, orchestration of subdomain discovery, HTTP probing, and vulnerability scanning. -- Threat Hunting Automation: Continuous detection of suspicious patterns with correlated findings and automated evidence reports. -- Penetration Testing Workflows: Reusable workflows for reconnaissance, scanning, exploitation, and reporting. -- Compliance and Auditing Automation: Automated evidence collection and report generation for SOC2, ISO27001, and regulatory requirements. -- DevSecOps Integration: Security scanning triggered on code deployments, infrastructure changes, and supply chain updates. - -## Resources - -- **Website:** [shipsec.ai](https://shipsec.ai) -- **Studio Platform:** [studio.shipsec.ai](https://studio.shipsec.ai) -- **Documentation:** [docs.shipsec.ai](https://docs.shipsec.ai) -- **Source Code:** [github.com/ShipSecAI/studio](https://github.com/ShipSecAI/studio) -- **Community Discord:** [discord.gg/fmMA4BtNXC](https://discord.gg/fmMA4BtNXC) -- **Updates:** [@shipsecai on Twitter/X](https://twitter.com/shipsecai) -- **GitHub Discussions:** [github.com/ShipSecAI/studio/discussions](https://github.com/ShipSecAI/studio/discussions) - -## About ShipSec - -ShipSec builds the operating system for modern security teams. ShipSec Studio is the flagship product delivering the best security automation platform for organizations seeking fast, reliable security without compromise. Founded by security engineers with experience at top global tech companies, ShipSec's mission is to make automated security accessible to every team. diff --git a/robots.txt b/robots.txt deleted file mode 100644 index b2b50317..00000000 --- a/robots.txt +++ /dev/null @@ -1,43 +0,0 @@ -# robots.txt - ShipSec Studio -# Security automation platform robots configuration - -# Default rules for all bots -User-agent: * -Allow: / -Allow: /docs/ -Allow: /api/docs -Allow: /llms.txt -Allow: /sitemap.xml - -# Disallow sensitive/admin areas -Disallow: /admin/ -Disallow: /api/v1/admin/ -Disallow: /api/auth/ -Disallow: /api/internal/ -Disallow: /api/secrets/ -Disallow: /_next/ -Disallow: /.git/ -Disallow: /node_modules/ -Disallow: /build/ -Disallow: /dist/ -Disallow: /coverage/ -Disallow: /.env* -Disallow: /config/ -Disallow: /secrets/ -Disallow: /temp/ -Disallow: /*?*sort= -Disallow: /*?*filter= -Disallow: /*?*page=* - -# Google-specific rules -User-agent: Googlebot -Allow: / -Crawl-delay: 0 - -# Bing-specific rules -User-agent: Bingbot - - -# Sitemaps - primary and documentation -Sitemap: https://studio.shipsec.ai/sitemap.xml -Github: https://github.com/shipsecai/studio diff --git a/sitemap.xml b/sitemap.xml deleted file mode 100644 index 4c8a51eb..00000000 --- a/sitemap.xml +++ /dev/null @@ -1,277 +0,0 @@ - - - - - - https://studio.shipsec.ai/ - 2025-12-22 - weekly - 1.0 - - - - https://studio.shipsec.ai/login - 2025-12-22 - monthly - 0.9 - - - - https://studio.shipsec.ai/signup - 2025-12-22 - monthly - 0.9 - - - - https://studio.shipsec.ai/workflows - 2025-12-22 - weekly - 0.8 - - - - https://studio.shipsec.ai/components - 2025-12-22 - weekly - 0.8 - - - - https://studio.shipsec.ai/executions - 2025-12-22 - weekly - 0.7 - - - - https://studio.shipsec.ai/settings - 2025-12-22 - monthly - 0.6 - - - - - https://docs.shipsec.ai/ - 2025-12-22 - weekly - 1.0 - - - - https://docs.shipsec.ai/quickstart - 2025-12-22 - monthly - 0.95 - - - - https://docs.shipsec.ai/installation - 2025-12-22 - monthly - 0.9 - - - - https://docs.shipsec.ai/architecture - 2025-12-22 - monthly - 0.85 - - - - https://docs.shipsec.ai/workflows - 2025-12-22 - bi-weekly - 0.85 - - - - https://docs.shipsec.ai/components - 2025-12-22 - weekly - 0.85 - - - - https://docs.shipsec.ai/api-reference - 2025-12-22 - weekly - 0.8 - - - - https://docs.shipsec.ai/deployment - 2025-12-22 - monthly - 0.8 - - - - https://docs.shipsec.ai/security - 2025-12-22 - monthly - 0.8 - - - - https://docs.shipsec.ai/faq - 2025-12-22 - monthly - 0.7 - - - - - https://shipsec.ai/ - 2025-12-22 - weekly - 1.0 - - - - https://shipsec.ai/about - 2025-12-22 - monthly - 0.85 - - - - https://shipsec.ai/features - 2025-12-22 - monthly - 0.85 - - - - https://shipsec.ai/pricing - 2025-12-22 - monthly - 0.85 - - - - https://shipsec.ai/use-cases - 2025-12-22 - monthly - 0.8 - - - - https://shipsec.ai/use-cases/vulnerability-detection - 2025-12-22 - monthly - 0.75 - - - - https://shipsec.ai/use-cases/threat-hunting - 2025-12-22 - monthly - 0.75 - - - - https://shipsec.ai/use-cases/penetration-testing - 2025-12-22 - monthly - 0.75 - - - - https://shipsec.ai/use-cases/compliance-auditing - 2025-12-22 - monthly - 0.75 - - - - https://shipsec.ai/enterprise - 2025-12-22 - monthly - 0.8 - - - - https://shipsec.ai/blog - 2025-12-22 - weekly - 0.8 - - - - https://shipsec.ai/changelog - 2025-12-22 - weekly - 0.7 - - - - - https://shipsec.ai/privacy - 2025-12-22 - monthly - 0.6 - - - - https://shipsec.ai/terms - 2025-12-22 - monthly - 0.6 - - - - https://shipsec.ai/security - 2025-12-22 - monthly - 0.65 - - - - https://shipsec.ai/contact - 2025-12-22 - monthly - 0.7 - - - - https://shipsec.ai/support - 2025-12-22 - monthly - 0.7 - - - - - https://github.com/ShipSecAI/studio - 2025-12-22 - daily - 0.9 - - - - https://github.com/ShipSecAI/studio/discussions - 2025-12-22 - weekly - 0.8 - - - - https://github.com/ShipSecAI/studio/issues - 2025-12-22 - daily - 0.7 - - - - https://discord.gg/fmMA4BtNXC - 2025-12-22 - weekly - 0.75 - - -