Security Compliance Platform CLI - Secure your code from the terminal.
Project description
Security Scanners
The platform integrates four industry-standard security scanners:
-
Semgrep - Multi-language static analysis
- Supports 18+ languages: Python, JavaScript, TypeScript, Java, Go, Ruby, PHP, C/C++, C#, Rust, Kotlin, Scala, Swift
- Uses Semgrep Registry community rules
- OWASP Top 10 and CWE coverage
-
Bandit - Python static security analysis
- Detects hard-coded secrets, SQL injection, shell injection, insecure crypto
- 68+ built-in security checks
- Severity-based risk scoring
-
Checkov - Infrastructure as Code security
- Scans Terraform, Dockerfile, Kubernetes, CloudFormation
- 1000+ built-in policies (CIS, PCI-DSS, HIPAA compliance)
- Identifies misconfigurations before deployment
-
pip-audit - Python dependency vulnerability scanning
- Checks for known CVEs in dependencies
- Uses PyPI Advisory Database
- Provides upgrade recommendations
Scanner Workflow
- Repository is cloned to temporary directory
- All applicable scanners run in parallel
- Findings are aggregated and stored in database
- Risk score calculated based on severity (0-10 scale)
- Temporary files cleaned up
The platform includes a powerful CLI script to trigger scans and resolutions directly from your terminal.
1. Installation
Recommended: Quick Install (curl)
curl -sSL https://raw.githubusercontent.com/maxwellsarpong/Code-Security-platform/main/install.sh | bash
**Using uv (Isolated)**
```bash
uv tool install scp-cli
Using pip
pip install scp-cli --upgrade
2. Usage
Get your API key from the dashboard
Running the CLI tool
# Showing the help menu
scp-cli --help
# Authenticate (Set your API key)
scp-cli auth --key <YOUR_API_KEY>
# Start a remote scan
scp-cli scan https://github.com/owner/repo
# Start a local workspace scan (automatic zipping & upload)
scp-cli scan .
# Check scan status (summarized results)
scp-cli status <scan_id>
# CI/CD: Wait for scan completion and verify results
# --fail: Exit with code 1 if matches are found
# --severity: Minimum severity (LOW, MEDIUM, HIGH, CRITICAL)
scp-cli check <scan_id> --severity HIGH --fail
# List all security issues for a scan (get Finding IDs)
scp-cli findings <scan_id>
# Resolve findings (Bulk fix for a scan)
# - For remote repos: Creates a Pull Request and returns the URL.
# - For local scans: Generates and applies fixes directly to your files (with backups).
scp-cli resolve <id_or_finding_id>
# Check all successfully resolved findings
scp-cli resolved
# Get the PR URL for a specific resolved finding
scp-cli pr <finding_id>
# Check your quota
scp-cli usage
# Check current authentication status
scp-cli whoami
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file scp_cli-0.1.13.tar.gz.
File metadata
- Download URL: scp_cli-0.1.13.tar.gz
- Upload date:
- Size: 78.0 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.0.1 CPython/3.11.12
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
bbe66bf950442ff97f818cd0bf1e5d0752ee187bb4cfe59e903bf989aa8b7179
|
|
| MD5 |
6064ad22f4eb98b185613fbd57a9c0fc
|
|
| BLAKE2b-256 |
6b4eb12d0c5f05f3ee32897895dd4938961fcd7b16104ad90e5838e00238d201
|
File details
Details for the file scp_cli-0.1.13-py3-none-any.whl.
File metadata
- Download URL: scp_cli-0.1.13-py3-none-any.whl
- Upload date:
- Size: 74.9 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.0.1 CPython/3.11.12
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
6a4f0f1a4f5965bb110dd9e5464f1ed4e83ffbf4d9e83ba14ed26c28a9a70b84
|
|
| MD5 |
dc52e4717543b44ff1993cd0135d1fbf
|
|
| BLAKE2b-256 |
f5433eaffadbbc324b088b4e0ccd3e04b9d4158304e791280bfbb8d09c51aa58
|
