Repository Dashboard
Repository Dashboard

View and scan GitHub repositories.

Paste a public GitHub repository URL and the dashboard will inspect the tree for package manifests, lockfiles, sensitive files like .env, and dependency vulnerabilities.

Public repos only. Sensitive file contents are not displayed.

Try a repo like https://github.com/vercel/next.js or any public GitHub repository.

Package manifests
0
Lockfiles
0
Sensitive files
0
Vulnerable deps
0
Sensitive file checks

Flags filenames like .env, .npmrc, private keys, and credential stores.

Only the path and risk reason are shown. File contents are never rendered in the dashboard.

Detected files

Manifest and sensitive paths

Scan a repository to list manifests, lockfiles, and sensitive file paths here.
Lockfiles

Build provenance

Lockfiles will appear here after a scan.
Dependency security

Known vulnerability and outdated dependency check

Run a scan to see dependency security findings here.