SecureCode Guardian is a full-stack security analysis platform that helps developers detect vulnerabilities in their code before deployment.
- 🔍 Secret Detection (API keys, tokens, passwords)
- 🛠 Pattern Detection (SQL injection, debug mode)
- 📦 Dependency Vulnerability Analysis
- 📊 Risk Scoring System
- 📄 PDF Security Reports
- 📁 Project Version Tracking
- 📈 Dashboard Analytics
Frontend → Flask API → Scanner Engine → Risk Engine → SQLite → Dashboard
- Frontend: HTML, Tailwind CSS, JavaScript
- Backend: Python (Flask)
- Database: SQLite
- Charts: Chart.js
securecode_guardian/
├── backend/
│ ├── app.py
│ ├── routes/
│ ├── services/
│ └── utils/
├── frontend/
│ ├── static/
│ └── templates/
├── scanner/
│ ├── file_scanner.py
│ ├── secret_detector.py
│ ├── pattern_detector.py
│ └── dependency_checker.py
├── database/
├── uploads/
└── reports/
pip install -r requirements.txtpython verify_install.pypython run.pyOpen your browser and navigate to: http://localhost:5000
- Python 3.8+
- 8GB RAM (recommended)
- Multi-core CPU (for optimal performance)
# Run all tests
python -m pytest tests/
# Run specific test
python tests/test_scanner.pySee PROJECT_STRUCTURE.md for detailed architecture documentation.
- File Scanner - Traverse directories and analyze files
- Secret Detector - Find API keys, tokens, passwords
- Pattern Detector - Detect SQL injection, debug mode
- Dependency Checker - Analyze vulnerable dependencies
- Risk Engine - Calculate security scores
- CI/CD integration
- GitHub scanning
- AI-based vulnerability detection
- Cloud deployment
- Developers
- Students
- DevOps engineers
- Security learners
Secure your code before deployment.