Skip to content

Commit d5574fe

Browse files
authored
Merge pull request #2 from neuralforgeone/ai-domain
Ai domain
2 parents 6c9dec8 + dd7dac1 commit d5574fe

18 files changed

Lines changed: 413 additions & 369 deletions

File tree

.gitignore

Lines changed: 5 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -163,3 +163,8 @@ test.env
163163
# Misc
164164
.DS_Store
165165
memory_bank.md
166+
/openaudit.egg-info
167+
/dist
168+
*.whl
169+
/openaudit.egg-info
170+
openaudit.egg-info/PKG-INFO

README.md

Lines changed: 79 additions & 83 deletions
Original file line numberDiff line numberDiff line change
@@ -1,100 +1,91 @@
1-
# OpenAuditKit
1+
<div align="center">
22

3-
OpenAuditKit is an open-source CLI security audit tool designed to scan your codebase for secrets and configuration vulnerabilities. It emphasizes offline capability, modular design, and secure handling of sensitive data (secret masking).
3+
<img src="https://raw.githubusercontent.com/neuralforgeone/OpenAuditKit/main/assets/logo1.png" alt="OpenAuditKit Logo" width="200" height="auto" />
44

5-
## Features
6-
- **Secret Scanning**: Detects API keys and secrets using regex and entropy checks.
7-
- **Config Scanning**: Identifies misconfigurations in deployment files (e.g., .env, Dockerfile).
8-
- **Secure**: Secrets are masked in outputs; offline-first design.
9-
- **Backend Ready**: Feature-based architecture with Pydantic models for easy integration into dashboards or APIs.
10-
- **Customizable**: Add your own rules! See [Rule Documentation](openopenaudit/rules/README.md).
5+
# OpenAuditKit
116

12-
## 🛡️ Why OpenAuditKit?
7+
[![PyPI version](https://badge.fury.io/py/openaudit.svg)](https://badge.fury.io/py/openaudit)
8+
[![Python Versions](https://img.shields.io/pypi/pyversions/openaudit.svg)](https://pypi.org/project/openaudit/)
9+
[![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](https://opensource.org/licenses/MIT)
10+
[![Powered by NeuralForge](https://img.shields.io/badge/Powered%20by-NeuralForge.one-dark)](https://neuralforge.one)
1311

12+
**Next-Gen Security Audit Tool for Modern Codebases.**
13+
*Powered by AI. Secure by Design. Offline First.*
1414

15-
## 🎥 Usage Demo
15+
[🌐 Website](https://neuralforge.one)[📚 Documentation](https://github.com/neuralforgeone/OpenAuditKit)[🐛 Report Bug](https://github.com/neuralforgeone/OpenAuditKit/issues)
1616

17-
![OpenAuditKit Demo](path/to/demo.gif)
18-
*(Replace this with your actual usage GIF)*
17+
</div>
1918

20-
## Usage
19+
---
2120

22-
### Basic Scan
23-
```bash
24-
openaudit scan .
25-
```
21+
## � What is OpenAuditKit?
2622

27-
### 🧠 AI-Powered Analysis
28-
Unlock advanced capabilities by configuring your OpenAI API key:
23+
**OpenAuditKit** is not just another linter. It's an intelligent security companion that lives in your terminal. Unlike traditional tools that drown you in false positives, OpenAuditKit combines robust pattern matching (Regex & Entropy) with **Context-Aware AI Agents** to understand *why* a piece of code might be dangerous.
2924

30-
```bash
31-
# 1. Configure API Key
32-
openaudit config set-key sk-your-key-here
25+
Whether you are a solo developer or part of a large enterprise, OpenAuditKit helps you ship secure code faster.
3326

34-
# 2. Run Scan with AI Agents
35-
openaudit scan . --ai
27+
## ✨ Key Features
3628

37-
# 3. Explain a specific file
38-
openaudit explain openaudit/main.py
39-
```
29+
| Feature | Description |
30+
| :--- | :--- |
31+
| **🕵️ Secret Scanning** | Detects API keys, tokens, and credentials with high-entropy validation. |
32+
| **⚙️ Config Audit** | Discovers misconfigurations in `Dockerfile`, `.env`, `Kubernetes`, and more. |
33+
| **🧠 AI Advisory** | **(New)** Integrated AI Agents explain vulnerabilities and suggest fixes. |
34+
| **🏗️ Architecture Analysis** | AI agents analyze your project structure for design flaws. |
35+
| **🛡️ Threat Modeling** | auto-generates STRIDE threat models based on your codebase. |
36+
| **🔌 Integrations** | Native support for CI/CD pipelines (GitHub Actions, GitLab CI). |
37+
| **📝 JSON Reporting** | Export findings for easy integration with dashboards like DefectDojo. |
38+
39+
## 🚀 Installation
4040

41-
**AI Agents:**
42-
- **Architecture Agent**: Reviews modularity and dependencies.
43-
- **Cross-File Agent**: Traces dangerous data flows across modules.
44-
- **Explain Agent**: Provides detailed code explanations.
45-
- **Secret Agent**: Validates if found secrets are likely real or test data.
46-
- **Threat Model Agent**: Generates a STRIDE threat model for your project structure.
41+
Install simply via pip:
4742

48-
### JSON Output
4943
```bash
50-
openaudit scan . --format json --output report.json
44+
pip install openaudit
5145
```
5246

53-
## 🛠 Features
47+
## ⚡ Quick Start
5448

55-
- **Secret Scanning**: Detects API keys and secrets using regex and entropy checks.
56-
- **Config Scanning**: Identifies misconfigurations in deployment files (e.g., .env, Dockerfile).
57-
- **Secure**: Secrets are masked in outputs; offline-first design (unless AI is enabled).
58-
- **Backend Ready**: Feature-based architecture with Pydantic models for easy integration into dashboards or APIs.
59-
- **Customizable**: Add your own rules! See [Rule Documentation](openaudit/rules/README.md).
49+
### 1. Basic Scan
50+
Run a security scan on your current directory:
6051

61-
## 🛡️ Why OpenAuditKit?
52+
```bash
53+
openaudit scan .
54+
```
6255

63-
Often, security tools are either too simple (grep) or too complex (enterprise SAST). OpenAuditKit bridges the gap:
56+
### 2. Enable AI Superpowers 🧠
57+
Unlock the full potential with AI agents that analyze architecture and data flow:
6458

65-
| Feature | OpenAuditKit | Gitleaks | TruffleHog |
66-
| :--- | :---: | :---: | :---: |
67-
| **Secret Scanning** ||||
68-
| **Config Scanning** ||||
69-
| **Offline First** ||| ❌ (Often requires API) |
70-
| **AI Analysis** | ✅ (Optional) |||
71-
| **Custom Rules** | ✅ (YAML) | ✅ (TOML) | ✅ (Detectors) |
72-
| **Backend Integration** | ✅ (Pydantic Models) |||
59+
```bash
60+
# Set your OpenAI API Key
61+
openaudit config set-key sk-your-api-key
7362

74-
### Security Philosophy
75-
1. **Offline First**: No data leaves your machine unless you explicitly enable AI features.
76-
2. **Confidence > Noise**: We use entropy checks and specific regexes to minimize false positives.
77-
3. **Actionable**: Every finding comes with a remediation step.
63+
# Run an AI-enhanced scan
64+
openaudit scan . --ai
65+
```
7866

79-
## Installation
67+
### 3. Ask Your Code
68+
Don't understand a complex file? Let the **Explain Agent** break it down:
8069

8170
```bash
82-
# From PyPI
83-
pip install openaudit
84-
85-
# From Source
86-
git clone https://github.com/neuralforgeone/OpenAuditKit.git
87-
cd OpenAuditKit
88-
pip install .
71+
openaudit explain src/complex_logic.py
8972
```
9073

91-
## 🚀 CI/CD Integration
74+
## 📊 Comparison
9275

93-
OpenAuditKit is designed to run in CI/CD pipelines. Use the `--ci` flag to enable CI mode (exit code 1 on failure, no interactive elements).
76+
| Feature | OpenAuditKit | Gitleaks | TruffleHog |
77+
| :--- | :---: | :---: | :---: |
78+
| **Finding Secrets** ||||
79+
| **Config Analysis** ||||
80+
| **AI Context Analysis** ||||
81+
| **Architecture Review** ||||
82+
| **Offline Capabilities** |||* |
83+
84+
*\*TruffleHog often requires API connectivity for verification.*
9485

95-
### GitHub Actions Example
86+
## 🤖 CI/CD Integration
9687

97-
Create `.github/workflows/audit.yml`:
88+
Secure your pipeline with zero effort. Add this to your `.github/workflows/security.yml`:
9889

9990
```yaml
10091
name: Security Audit
@@ -104,24 +95,29 @@ jobs:
10495
openaudit:
10596
runs-on: ubuntu-latest
10697
steps:
107-
- uses: actions/checkout@v3
108-
- uses: actions/setup-python@v4
109-
with:
110-
python-version: '3.10'
111-
- run: pip install openaudit
112-
- run: openaudit scan . --ci --fail-on high
98+
- uses: actions/checkout@v3
99+
- uses: actions/setup-python@v4
100+
with:
101+
python-version: '3.10'
102+
- run: pip install openaudit
103+
- run: openaudit scan . --ci --fail-on high --ai
104+
env:
105+
OPENAI_API_KEY: ${{ secrets.OPENAI_API_KEY }} # Optional for AI features
113106
```
114107
115-
### Exit Codes
116-
- `0`: No issues found (or issues below threshold).
117-
- `1`: Issues found matching or exceeding severity threshold.
108+
## 🛡️ Security Philosophy
118109
119-
## 🛠 Development & Testing
110+
At **NeuralForge**, we believe security tools should be:
111+
1. **Silent but Deadly:** Only alert on real issues (Low False Positives).
112+
2. **Educational:** Don't just find bugs, explain them.
113+
3. **Private:** Your code never leaves your machine unless you explicitly opt-in to AI features (which are redacted by default).
120114
121-
Run the test suite with coverage:
122-
```bash
123-
pip install -e .[dev]
124-
pytest tests --cov=openaudit
125-
```
115+
## 🤝 Contributing
116+
117+
We love contributions! Please check out our [Contributing Guide](CONTRIBUTING.md) to get started.
118+
119+
---
126120
127-
We enforce a 90% test coverage threshold.
121+
<div align="center">
122+
<sub>Built with ❤️ by the <a href="https://neuralforge.one">NeuralForge</a> Team.</sub>
123+
</div>

build/lib/openaudit/__init__.py

Lines changed: 0 additions & 1 deletion
This file was deleted.

build/lib/openaudit/main.py

Lines changed: 0 additions & 9 deletions
This file was deleted.

build/lib/openaudit/rules/config.yaml

Lines changed: 0 additions & 67 deletions
This file was deleted.

build/lib/openaudit/rules/secrets.yaml

Lines changed: 0 additions & 18 deletions
This file was deleted.
-9.13 KB
Binary file not shown.

dist/openaudit-0.1.0.tar.gz

-10.8 KB
Binary file not shown.

0 commit comments

Comments
 (0)