Inspiration
I wanted to build something better than current scanners. I wanted to check if the capability of current models can speed up and deliver high-quality results on code reviews from a security perspective and deliver tangible next steps for developers.
What it does
It scans your code providing a summary and finding details. Also, recommend a fix of the code. The scanner looks for severity, remediation effort, and impact. Also, the scanner provides educational links to the problems.
In the dedicated section, the scanner offers a fixed code proposal.
How we built it
Just for fun, as there is no tool I like for SAST on the current world market.
Challenges we ran into
Generation of images or graphs in summary.
Accomplishments that we're proud of
Easy, fast and it works well. I tested it on various snippets of the code.
What we learned
Different FM usage for different purposes.
What's next for AWSome Codealyzer
IF possible I would one day build my own full blown SAST tool or Vuln management tool as I like it based on my 13 years of experience in the field.
Log in or sign up for Devpost to join the conversation.