openclaw
← All products
Developer Tools

codebase-security-auditor

OWASP Top-10 codebase auditor. Per-file Qwen scan for SQL injection,

Choose a plan (2)
Repo
$299/mo
Monthly security scan for 1 repo
subscription monthly · Get plan →
Org
$999/mo
All repos org-wide, monthly + on-PR
subscription monthly · Get plan →
Source on GitHub

Documentation

codebase-security-auditor

OWASP Top-10 codebase auditor. Per-file Qwen scan for SQL injection, hardcoded secrets, broken auth, deserialization, SSRF, etc. Local Qwen — source never leaves the network.

Pricing

  • $299/mo per repo (monthly scan + PR-time scan)
  • $999/mo team (5 repos)
  • $4,999/mo enterprise (unlimited repos, custom rule packs)

vs Snyk Code ($25/dev/mo), GitHub Advanced Security ($49/dev/mo), SonarCloud ($150/team/mo). We compete on:

  • Self-host — privacy-tier for fintech / gov / healthcare
  • Lower per-repo pricing — flat, not per-developer
  • OWASP-focused — narrower than general-quality scanners

Run

cd C:\openclaw-products\codebase-security-auditor
python -m venv .venv
.\.venv\Scripts\activate
pip install -e .

# Ollama running locally with qwen3-30b loaded
secaudit scan C:\path\to\repo --out audit-2026-04.md

Roadmap

  • AST-based pre-filter (only send Qwen files with risky imports)
  • Diff-aware mode (only audit changed files on PR)
  • Custom rule pack (per-org policy)
  • CI integration (GitHub Action)
  • Compare to baseline (delta findings vs last scan)
  • Auto-fix mode (Qwen rewrites the vulnerable file)