AI-powered code vulnerability scanner for GitHub repositories
Project description
CodeAnalyzer🔍 | v0.1.5 Release
AI-Powered Code Security Analysis with SARIF Integration
pip install code-analyzer-b==0.1.5
🚀 What's New in 0.1.5
- GitHub Code Scanning Integration via SARIF format
- Enhanced Error Handling for API failures
- Improved Documentation with CI/CD examples
- Performance Optimizations for large repositories
🛠 Setup & Configuration
Initial Setup
# Run setup command
code_analyzer setup
# Follow prompts to enter API key
🔑 Enter your DeepSeek API key: sk-xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
Configuration File
The setup creates a config file at:
~/.code_analyzer/config.ini
Example config:
[DEEPSEEK]
API_KEY = your_api_key_here
MAX_FILE_SIZE = 5000000 # 5MB
Verify Setup
code_analyzer --version
# Output: code_analyzer 0.1.5
🔍 Quick Start
Basic Analysis
code_analyzer analyze https://github.com/your/repo
GitHub Integration
code_analyzer analyze . --format sarif --output results.sarif
🔑 Obtaining API Key
- Visit DeepSeek API Console
- Create new API key with "Code Analysis" permissions
- Copy key and paste during setup
🔍 Key Features
-
Multi-Format Reports
TXT | HTML | JSON | SARIF | MARKDOWN -
Enterprise Security
CWE Tracking | OWASP Top 10 Mapping | GDPR Compliant -
CI/CD Ready
GitHub Actions | Jenkins | GitLab CI
📊 Report Formats
| Format | Command Example | Use Case |
|---|---|---|
| SARIF | --format sarif -o scan.sarif |
GitHub Code Scanning |
| HTML | -o report.html |
Human-readable Summary |
| JSON | --format json -o data.json |
API Integration |
| Markdown | -o results.md |
Documentation |
🛡️ Security Standards
- SARIF 2.1.0 Compliance
- CWE 2023 Taxonomy
- OWASP ASVS 4.0.3 Alignment
- MITRE ATT&CK Framework Mapping
🧩 CI/CD Integration
GitHub Action Example
- name: Security Scan
run: |
code_analyzer analyze . \
--format sarif \
--output results.sarif
- name: Upload SARIF
uses: github/codeql-action/upload-sarif@v2
with:
sarif_file: results.sarif
📈 Version 0.1.5 Metrics
- Analysis Speed: ~100 files/min
- Accuracy: 92% vulnerability detection
- Memory Usage: <500MB avg
- Supported Files: 25+ extensions
📚 Documentation
📦 Installation Options
# Stable version
pip install code-analyzer-b
# Specific version
pip install code-analyzer-b==0.1.5
# Upgrade existing
pip install --upgrade code-analyzer-b
Need Help?
Open an issue on GitHub
Join discussion on Telegram Channel
CodeSecure | CodeConfident | CodeCompliant
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file code_analyzer_b-0.1.5.tar.gz.
File metadata
- Download URL: code_analyzer_b-0.1.5.tar.gz
- Upload date:
- Size: 10.9 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.1.0 CPython/3.13.0
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
3c2040ddeaf1bfdbcda245551ed5ed17f8d0a63543d2b3a5da8a2c4f99ac3012
|
|
| MD5 |
fe9c52aa756b29ba3c51380928694e36
|
|
| BLAKE2b-256 |
fe269a4ff49d3ffad2ab644c2d9e104a26b3eb82daea10ba68ea7ddf952b8c16
|
File details
Details for the file code_analyzer_b-0.1.5-py3-none-any.whl.
File metadata
- Download URL: code_analyzer_b-0.1.5-py3-none-any.whl
- Upload date:
- Size: 10.8 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.1.0 CPython/3.13.0
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
f917e8304f60f623c8d430f58d379f8c1ca89fd0bf5d87fba79cba9bee9769d0
|
|
| MD5 |
4b4088d350c6661fd526d042bd94bdf8
|
|
| BLAKE2b-256 |
4e0c0d7e2161b285c43d72382e3ba0c102287470f823fdb3aca008a6f8e8dbff
|
