ShipGuardSecurity readiness for GitHub
Production readiness scanner for public GitHub repos

ShipGuard

Scan a repository before you ship. ShipGuard turns automated security, supply-chain, and Web3 checks into a clear readiness report with prioritized next steps.

Secrets detectionDependency reviewWeb3 risk signals

Start a scan

Enter a public GitHub repository URL. Results are generated in your browser session.

Live
Public repositories only. Uses the GitHub public API. Add a GITHUB_TOKEN environment variable for higher rate limits.
01

Secrets and hygiene

Flags exposed credentials, missing CI, weak defaults, and basic repository hygiene gaps.

02

Supply chain

Reviews lockfiles, dependency posture, pinned images, and GitHub Actions risk signals.

03

Web3 review

Adds checks for contracts, approvals, wallets, deployment scripts, and crypto-specific risks.

How ShipGuard works
1Paste a public repo
2Run automated checks
3Review prioritized findings
4Export markdown