← Back to Products

codescan

SaaS

Security Scanner for GitHub Repositories

A web service that scans any GitHub repository for security issues — just paste a URL. It detects risky code patterns, exposed API keys and credentials, and outdated packages with known vulnerabilities, then generates a shareable letter-grade report. No installation or GitHub App required; no code is stored, only scan results.

Key Features

  • Risky code detection - Flags security-sensitive code patterns with file and line numbers
  • Secret scanning - Detects exposed API keys and credentials
  • Dependency audit - Finds outdated packages with known vulnerabilities
  • Letter-grade report - One shareable grade summarizing repository security
  • Private repository support - Scan private repos by signing in with GitHub

Tech Stack

TypeScript

External Links

GitHub Service Site
Contact Us