Repo Sentinel

RepoSentinel is an automated security platform that helps developers secure their GitHub repositories by detecting exposed API keys, secrets, and vulnerable dependencies in real-time. 🚨 The Problem 74% of data breaches involve exposed credentials Developers accidentally commit secrets every 8 seconds Supply chain attacks increased 650% in the past year Current security tools are too complex, expensive, or fragmented

✨ Our Solution One-click GitHub security scanning with privacy-first architecture and actionable remediation guidance. 🔍 What We Detect Exposed Secrets:

AWS Access Keys & Secret Keys Google Cloud API Keys Stripe API Keys Slack Bot Tokens OpenAI API Keys GitHub Personal Access Tokens JWT Tokens Database Connection Strings

Dependency Vulnerabilities:

Compromised npm packages (eslint-config-prettier, synckit, @pkgr/core) Outdated packages with known CVEs Supply chain attack indicators Version mismatch security risks

🎯 Key Features

🔐 Privacy-First: All secrets redacted, nothing sensitive stored ⚡ Lightning Fast: Scan entire organizations in seconds 🎯 Actionable Intelligence: Clear remediation steps, not just alerts 📊 Unified Dashboard: Secrets + dependencies in one view 🔄 Real-Time Monitoring: Catch issues before they become breaches 📈 Risk Analytics: Visualize security posture across repositories

🏗️ Architecture Frontend

Next.js 14 with App Router Tailwind CSS for responsive design shadcn/ui components for enterprise UX Recharts for security analytics visualization

Backend

Python FastAPI for high-performance scanning Advanced Regex Patterns + entropy analysis for secret detection GitHub REST API integration with OAuth Dependency parsing for package.json and lock files

Security

Built With

• fastapi
• githubapi
• next.js
• python
• typescript