Skip to main content

Code Scan

The Code Scan provides a centralized interface for scanning repositories and detecting sensitive information such as API keys, tokens, and secrets.

It enables developers and security teams to proactively identify vulnerabilities and maintain secure codebases.

Overview Metrics

At the top of the dashboard, key metrics provide a quick snapshot of scanning activity.

Total Scans :-

This represents the total number of scans performed across all time.

It helps track overall usage and monitoring coverage of the scanning system.

Last Scan :-

Displays the most recent scan timestamp. This helps users quickly identify when the last security check was performed.

Navigation Tabs

The dashboard includes two primary tabs for managing scans.

New Scan

The New Scan tab allows users to initiate a fresh scan on a repository.

This is the default active view.

Scan History

The Scan History tab provides access to previously executed scans.

It allows users to:

  • Review past scan results
  • Track detected issues over time
  • Analyze trends in vulnerabilities

Code Safe Scanner

The Code Safe Scanner is the core feature used to initiate repository scans.

It is designed to enhance code security by detecting sensitive information.

GitHub Repository URL

Users must provide the repository URL or name to scan.

Personal Access Token (PAT)

This field allows users to enter a GitHub Personal Access Token.

  • Optional for public repositories
  • Required for private repositories
  • The token is encrypted before transmission
  • It is never stored by the system

This ensures secure authentication while maintaining privacy.

Start Free Scan

The Start Free Scan button initiates the scanning process.

Once triggered:

  • The repository is analyzed
  • Sensitive data patterns are detected
  • Results are generated for review

What We Scan For

This section highlights the core detection capabilities of the system.

Comprehensive Secret Detection

The scanner identifies sensitive information such as:

  • High-entropy strings
  • AWS keys
  • Google API keys
  • And 17+ additional secret types

This ensures broad coverage of potential security risks.

Historical Scanning

The system analyzes past commits to detect secrets that may have been exposed earlier.

This helps uncover:

  • Previously leaked credentials
  • Forgotten sensitive data
  • Long-term vulnerabilities

Advanced Entropy and Pattern Matching

Uses intelligent detection techniques to:

  • Reduce false positives
  • Improve accuracy
  • Identify real threats effectively

This ensures reliable and actionable scan results.

Summary

The Code Scan Dashboard provides a powerful and secure way to:

  • Scan repositories for sensitive data
  • Monitor scan history
  • Detect secrets using advanced techniques
  • Maintain overall codebase security

Dashboard Preview

Navigate to database section