Security baseline for your project. One command, you're set.
Project description
Bootsec
Security baseline for your project. One command, you're set.
The Problem
You're shipping fast. Security? "We'll add it later."
Later never comes. Then some bot finds your AWS keys on GitHub at 3am.
The Fix
pip install bootsec
bootsec go
That's it. 60 seconds. Done.
You now have:
.gitignorethat actually blocks secretsSECURITY.mdso people can report vulnsdocs/security-checklist.mdfor pre-launch.pre-commit-config.yamlthat catches mistakes before you commit
No config files. No 200-page docs. No BS.
Commands
| Command | What it does |
|---|---|
bootsec go |
Setup everything |
bootsec guard |
Pre-commit check (<1 sec) |
bootsec peek |
Preview before applying |
bootsec packs |
See available packs |
How It Works
- Scans your repo (Node? Python? Flutter? We got you)
- Generates security docs for your stack
- Guards your commits so you don't push secrets
- Merges with your existing files (never overwrites)
What You Get
| File | Why |
|---|---|
.gitignore |
Blocks secrets, build junk |
.env.example |
Template for env vars |
SECURITY.md |
Vuln reporting |
docs/security-checklist.md |
Pre-launch checklist |
.pre-commit-config.yaml |
Commit guard |
Examples
bootsec go # basic setup
bootsec go --ci # + GitHub Actions
bootsec peek # just preview, no changes
Design
- Merge, don't overwrite
- No network calls
- Pure Python, zero deps
- Fast. Like, actually fast.
Want More?
Bootsec Pro unlocks the good stuff:
| Command | What it does |
|---|---|
bootsec check |
Security audit with score (0-100) |
bootsec scan |
Find vulnerable deps |
bootsec deps |
Audit npm/pip/cargo/go/ruby/php |
bootsec sbom |
Generate SBOM |
bootsec ai |
AI fix suggestions |
Plus: 85+ secret patterns, Docker/K8s checks, supply chain security.
Requirements
- Python 3.10+
- Git
License
MIT
Code audited by my buddy Claude. He finds bugs at 3am without complaining. Truly built different.
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file bootsec-0.9.1.tar.gz.
File metadata
- Download URL: bootsec-0.9.1.tar.gz
- Upload date:
- Size: 31.8 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.9.6
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
d1bdc5801cd4465f5f65c8c67465bf6574284118cb27924032a2a32cb977a79d
|
|
| MD5 |
d39c465e823963ebfe7812d4bb14719a
|
|
| BLAKE2b-256 |
8d94dee02361d8cb712951952922cf45651841b56e908da5717fc1631810d9bd
|
File details
Details for the file bootsec-0.9.1-py3-none-any.whl.
File metadata
- Download URL: bootsec-0.9.1-py3-none-any.whl
- Upload date:
- Size: 53.1 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.9.6
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
e3c5ad174d56c5a998a5cc7bb02bb513aae281db50951488d55a45e0dc070db1
|
|
| MD5 |
d8bab0cbe9c0f8e3b9b1f6f6cfe1523a
|
|
| BLAKE2b-256 |
1f170d9193f31a8e6d3958eede445a653adebdc4d5f9f9ad4c4338ccc20ecd5d
|
