rouicscan — scan.rouic.com

$ rouicscan scan --repo github.com/rouic/api

[info] Cloning repository...

[info] Detected: TypeScript, 847 files, 42,391 LOC

[info] Running Semgrep (2,500+ rules)

[info] Running ESLint (security + quality)

[info] Running Trivy (CVEs + secrets)

[done] AI review complete (Claude Sonnet)

✓ Quality Gate Passed

0

bugs

0

vulns

3

smells

A

rating

$

Code quality, automated

AI-powered scanning with Semgrep, Trivy, and 5,500+ rules. Catches bugs, vulnerabilities, and code smells across every push.

Sign In
SemgrepESLintTrivyBanditgosecCheckov

Deep Static Analysis

AST-based scanning with taint tracking. Not regex — real code understanding across 30+ languages.

Dependency Scanning

CVE detection, secret scanning, and license compliance via Trivy. Catches vulnerable packages automatically.

AI Code Review

Claude explains every finding and suggests fixes. Tiered models — Haiku for triage, Sonnet for review, Opus for security.

Quality Gates

Block merges that fail your standards. Zero-config GitHub integration with PR comments and status checks.

PR Decoration

Scan results posted directly to your PRs. Status checks, summary comments, and inline annotations.

Self-Hosted

Runs on your GCP infrastructure. Your code never leaves your environment. Full control over data.

5,500+

scanning rules

6

integrated tools

30+

languages