GitHubMate — Free AI Code Security Scanner
Scan any GitHub repository for AI-generated code risks, secrets, CVEs, and misconfigurations. Full OWASP LLM Top 10 (2025) coverage — free, no signup, results in 30 seconds.
Please enable JavaScript to use GitHubMate.
Features
- OWASP LLM Top 10 (2025) — all 10 categories covered
- Vibe-code and AI-generated code risk detection
- Secret scanning: 30+ named token patterns + Shannon entropy
- Live CVE lookup via OSV.dev
- IaC scanning: Dockerfile, docker-compose, Kubernetes, Terraform
- SBOM export (JSON & CSV)
- OWASP ASVS compliance scoring
- SOC 2, GDPR, HIPAA, PCI DSS readiness