Find vulnerabilities, secrets, and compliance issues before deployment. OWASP Top 10 detection.
Vulnerable code reaches production:
- Security reviews take days
- Secrets committed to repos
- OWASP violations undetected
- Manual code review bottleneck
CodeShield-AI scans every commit:
- AI-powered analysis - Not just regex
- Secret detection - API keys, passwords
- OWASP Top 10 - Automated detection
- CI/CD integration - Block vulnerable code
git clone https://github.com/yksanjo/codeshield-ai.git
cd codeshield-ai
pip install -r requirements.txt
python src/main.py- β 20+ Languages - Python, JS, Java, Go, etc.
- β Secret Scanning - 1,200+ secret patterns
- β SAST Analysis - Static code analysis
- β License Compliance - Dependency checking
- π§ AI Fix Suggestions - Coming soon
- 1,200 secrets found in one bank
- 80% reduction in security debt
- Days β Minutes for security review
- Pre-commit hooks prevent issues
- Backend: Python 3.11+
- Parser: Tree-sitter
- AI: Transformers, CodeBERT
- Integration: GitHub, GitLab, Bitbucket
MIT License