A proprietary interprocedural taint engine across 24 languages, tracking user input from source through sanitiser to sink with a per-finding data-flow trace. Confidence-tiered, so the noise doesn't bury the real bugs.
What it does
24-language taint engine
Interprocedural data-flow across JS/TS, Python, Java, Kotlin, Scala, Groovy, C#, VB.NET, Go, PHP, Ruby, Swift, Objective-C, Dart, Apex, C, C++, CUDA, Fortran, JSP, Erlang and Elixir.
Real data-flow traces
Every finding ships the source → sanitiser → sink path, so reviewers see why it's exploitable — not just a line number.
Confidence tiering
Findings ranked by source class, sanitiser coverage and sink certainty. The high-precision set stays small; the speculative tail is separated, not dumped on you.
Framework-aware
Spring, JAX-RS, Struts, Hibernate, ASP.NET, Angular, React, Vue, Rails, Django, Flask, Gin, Phoenix and more — routes and sinks understood in context.
SARIF 2.1.0
Standard SARIF export round-trips into GitHub code scanning, IDEs and any SARIF-aware tool.
Direct and transitive dependency resolution across 30+ ecosystems, correlated against OSV, NVD and GHSA, then ranked by real exploitability — not raw CVE count.
Static analysis of your pipeline definitions across six CI platforms — mapped to the OWASP Top 10 CI/CD risks, with concrete remediation on every finding.
High-precision secret scanning across your codebase and config with entropy heuristics and inline suppression — tuned to surface real, exploitable secrets, not every high-entropy string.