Pre-deployment security check runner. Run all checks before shipping to catch issues early.
8 checks · Ready
Secret Detection
Scan for hardcoded API keys, passwords, and tokens
Dependency Audit
Check npm packages for known vulnerabilities
OWASP Baseline
Validate protection against OWASP Top 10 2025 risks
Security Headers
Verify CSP, HSTS, X-Frame-Options, and more
SSL/TLS
Confirm HTTPS enforcement and certificate validity
Rate Limiting
Check for rate limiting on API endpoints
Error Handling
Validate errors don't leak sensitive information
.env / .gitignore
Ensure secrets aren't committed to version control