I made a code scanner that finds embedded authorization code in your codebases so you can externalize it to Policy as Code.

https://github.com/EnforceAuth/zift

Written in Rust, so it hums through code.

Supports JS/TS/Java/Go/Python/C# now, more coming. Outputs Rego for OPA now, Cedar coming soon.

You can hook up your local agent for a `--deep` scan