| ▲ | Show HN: CommitGate – Automatically scan your commit for vulnerabilities(github.com) | ||||||||||||||||
| 4 points by ductrl 10 hours ago | 5 comments | |||||||||||||||||
Hello HN! I built a pre-commit code scanner that checks your staged changes for security vulnerabilities every time you run 'git commit'. I am an inexperienced programmer and this is my first personal project. Any feedback, positive or negative, big or small, relevant or not, would be greatly helpful and appreciated! The tool requires Gitleaks and Python to run, you will also need to use your own AI API key, which I understand is a big setup friction. You can check out my demo video instead if that is more convenient: https://youtu.be/ZYe5vWFRTus?si=9Fv8DhTHktwDK4mV Thank you so much for giving my project a try!!! | |||||||||||||||||
| ▲ | Bnjoroge 2 hours ago | parent | next [-] | ||||||||||||||||
Personally, I disable pre-commit hooks because they’re annoying and slow me down. Pre-push hook would make more sense. Secondly, i’d ideally want to use my codex/ claude subs for this, not an api key | |||||||||||||||||
| ▲ | asadeddin 6 hours ago | parent | prev | next [-] | ||||||||||||||||
Full disclosure, Ahmad, CEO at Corgea. Interesting approach, catching vulns at commit time before CI runs saves cycles. The challenge is always false positive rate at that stage and the AI inference time. How fast is the review? I saw the demo video and it seems you cut to the results. | |||||||||||||||||
| ▲ | buffer_overlord 10 hours ago | parent | prev [-] | ||||||||||||||||
Vu1nz does something similar but at the PR level | |||||||||||||||||
| |||||||||||||||||