Works on public repositories hosted on GitHub, GitLab, Bitbucket, Azure DevOps, or Gitea/Codeberg - software, firmware, KiCad schematics, mobile apps, IaC, documentation. Nothing is uploaded: your browser fetches the repo and analyzes it locally.
Advanced: Private Repos & Rate Limits
Tokens enable private repositories and raise rate limits. For GitHub, use a fine-grained token with read-only Contents access, which raises the limit from 60 to 5,000 requests per hour. For GitLab, use a personal access token with read_api. For Bitbucket, enter username:app_password or a repository access token. For Azure DevOps, use a PAT with the Code Read scope. The token stays in this browser tab only and is sent solely to the chosen provider's API.
This tool performs an automated, initial security assessment. It is not a substitute for a review by a qualified security professional, and it does not certify that a repository is secure or compliant. Results can include false positives and false negatives and should be independently verified. By using this tool you agree to hold Berkner Tech harmless and to indemnify Berkner Tech against any claims, losses, liabilities, or damages arising from your use of the tool or your reliance on its results.
