Show HN: OpenAuditKit – Offline, Python-native security scanner | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		Show HN: OpenAuditKit – Offline, Python-native security scanner
		1 point by Tunti35 1 day ago \| hide \| past \| favorite \| 2 comments
		Hi HN, I built OpenAuditKit after repeatedly running into leaked secrets and misconfigured Docker/.env files in small Python projects. Existing tools worked well but often felt too heavy, cloud-dependent, or hard to extend. OpenAuditKit is an offline-first, Python-native CLI tool that scans codebases for secrets and configuration risks. It uses regex + entropy checks, YAML-based community rules, and produces both human-friendly and CI-friendly reports. It’s fully open-source and designed with a clean core that could later power an API or dashboard. Feedback, criticism, and ideas are very welcome. github.com/neuralforgeone/OpenAuditKit

Tunti35 1 day ago | [–]

Happy to answer any questions about the architecture or trade-offs.

Tunti35 17 hours ago | [–]

New Update!

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact