I made a code scanner that finds embedded authorization code in your codebases so you can externalize it to Policy as Code.
https://github.com/EnforceAuth/zift
Written in Rust, so it hums through code.
Supports JS/TS/Java/Go/Python/C# now, more coming. Outputs Rego for OPA now, Cedar coming soon.
You can hook up your local agent for a `--deep` scan
