Scan your AI-generated code for security issues
Instant security scanning built for code from Bolt.new, Lovable, v0, and Claude Code. Find vulnerabilities before you deploy.
$ securesitescan https://github.com/user/repo
Scanning repository...
✓ Checking RLS policies
✓ Scanning for exposed secrets
✓ Analyzing SQL queries
✓ Reviewing authentication
✓ Detecting XSS vulnerabilities
━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━
Security Score: 72/100
Found 3 issues:
⚠️ HIGH: API key exposed in .env.local
⚠️ MEDIUM: Missing RLS on 'users' table
⚠️ LOW: No rate limiting on /api/auth
View full report →Built for the AI code generation era
AI tools build fast but often skip critical security measures. SecureSiteScan catches what they miss.
Public & Private Repos
Scan any public repo instantly. Connect GitHub to scan your private repos too.
AI-Aware Scanning
Tuned for Bolt, Lovable, v0, and Claude Code patterns.
Actionable Fixes
Get specific code suggestions with before/after examples.
40+ Security Checks
RLS, secrets, injections, auth flaws, and more.
Scan in three steps
No setup. No installation. No configuration.
Paste URL
Enter any public GitHub repository URL into the scanner.
We Analyze
40+ security checks run in parallel. Results in under 10 seconds.
Fix Issues
Get detailed findings with exact file locations and fix suggestions.
Detailed reports with actionable fixes
Every vulnerability comes with a clear explanation, risk assessment, and step-by-step fix instructions. No more guessing what to do next.
- Exact file and line locations
- Severity scoring (Critical, High, Medium, Low)
- Code snippets with suggested fixes
- Links to security best practices
API Key Exposed in Source
A Supabase service role key was found in the source code.
Fix: Move sensitive keys to environment variables and add .env to .gitignore
Ready to ship secure code?
Scan your first repository for free. No signup required.