Security Scanner for GitHub Repositories
Traqen integrates directly with GitHub to provide automated security scanning for your repositories. Connect via GitHub App, select the repositories you want to scan, and Traqen runs SAST, SCA, secrets detection, and DAST automatically. Scans can be triggered on every push or scheduled on a recurring basis.
How GitHub Integration Works
Install the Traqen GitHub App in your organization or personal account. Select which repositories Traqen can access — you control the permissions. Traqen clones the repository into an ephemeral container, runs all configured scan types, and returns results to your dashboard.
What Gets Scanned
SAST scans source code for vulnerability patterns. SCA checks dependency manifests and lock files for known CVEs. Secrets detection scans the full git history for exposed credentials. DAST probes the application if a target URL is configured.
Privacy and Security
Repositories are cloned into isolated, ephemeral Docker containers. Code is discarded immediately after scanning. No source code is stored on Traqen servers. GitHub App permissions are granular — you choose exactly which repositories Traqen can access.
Works with Private Repositories
Traqen supports both public and private GitHub repositories. The GitHub App handles authentication securely. You can add or remove repository access at any time from your GitHub settings.
Frequently Asked Questions
No. Repositories are cloned into ephemeral containers for scanning and discarded immediately after. No code is persisted.
Yes. The Traqen GitHub App supports private repositories with granular permission controls.
Scans can be triggered automatically on push events or scheduled at regular intervals. You configure this in the Traqen dashboard.
SAST (Semgrep), SCA (Trivy), secrets detection (Gitleaks), and DAST (Nuclei) if a target URL is configured.
Scan your GitHub repositories
Connect your GitHub account and start scanning repositories for vulnerabilities in minutes.
Connect GitHub