-
Home Page
-
Scanning Page
-
Scanned Reports
-
Insight Bot
Inspiration
we all love to vibe-code, but when it's time for deployment, it's a nightmare... leaked API keys, SQL injection attacks, broken/deprecated code are all a huge danger for your software's security
existing security tools are often too slow, or too invasive; I built a bouncer inside the Snowflake vault, ensuring that your 3AM flow state doesn't become a 9AM data breach
What it does
CodeTurret is a naitive Snowflake & Gemini security auditor; think of it as your own CI/CD pipeline where it feels like a real engineer is reviewing your code, and making fixes by putting up PRs.
How we built it
CodeBouncer is engineered as a secure, closed-loop system:
used native Snowflake Git integration to pull code directly into Snowflake stages, keeping the data safe
implemented a dual-pass AI architecture, Gemini's flash models for rapid triage across files, while Gemini pro models to perform deep semantic reasoning on high-risk code
used FastAPI and Snowpark Python to orchestrate the flow of code from the Git stage to the Cortex AI functions
used GitHub API to send out PRs with Gemini creating the PR body
What's next for CodeBouncer
multi-repo monitoring: expanding the dashboard to support entire organizations with cross-repository vulnerability tracking.
horizon integration: further leveraging Snowflake Horizon for automatic PII redaction within the security logs themselves
Log in or sign up for Devpost to join the conversation.