Product Roadmap
See what we've built, what we're working on, and what's coming next
Recently Shipped
Bulk scan & pause/resume
Scan multiple repositories simultaneously with pause/resume functionality and per-repo progress tracking.
Custom risk scoring & PDF exports
Custom risk scoring combines issue severity, age, and dependency exposure. Export results as PDF for stakeholders.
Multi-language AST scanning
Advanced AST-based security analysis for JavaScript/TypeScript, Python, Java, Go, and C# with taint tracking.
Scan history & trends
Track scan history over time with trend analysis, comparison tools, and automated notifications.
Custom security rules
Define your own security rules with regex patterns and custom severity levels.
False positive management
Mark and filter false positives to reduce noise and focus on real security issues.
License compliance checking
Check dependency licenses against your organization's policies and flag violations.
Automated issue creation
Automatically create GitHub issues for critical findings to streamline remediation.
CI/CD pipeline integration
GitHub Actions workflow template with PR comment integration for automated security checks.
Automated policy enforcement
Pre-commit hooks for blocking commits with security issues and enforcing policies.
Real-time collaboration
Issue comments, assignments, and team collaboration workflows for managing security issues.
API for external integrations
RESTful API endpoints for integrating scan results with external tools and custom workflows.
Scheduled scans
Automated scheduled scans with daily, weekly, or monthly frequency and encrypted token storage.
Global search (Cmd/Ctrl+Shift+K)
Fast keyboard-accessible search across repositories, issues, and scans with instant results.
Multi-format exports
Export scan results as CSV, PDF, or Markdown for reports, documentation, and stakeholder sharing.
Enhanced Notifications System
Comprehensive notifications UI with email (Resend) and Slack webhook integration. Configure notifications for scan completions, critical issues, rate limits, and daily digests.
Executive dashboard
High-level metrics dashboard with health scores, trend analysis, and executive-friendly reporting.
Code quality & bug detection
Comprehensive code quality scanning including complexity analysis, function length, null checks, and error handling.
IaC & Dockerfile scanning
Infrastructure-as-Code scanning for Terraform, CloudFormation, Ansible, Kubernetes, Helm, and Dockerfile security.
GitHub webhooks integration
Real-time webhook processing for automatic scans on push events and repository changes.
Issue timeline & linking
Track issue history over time and link related issues for better context and traceability.
Repository health scores
Automated health scoring based on security issues, dependency status, and code quality metrics.
AI-Powered Analysis
AI-generated scan summaries, contextual recommendations, and automated code fix suggestions powered by advanced language models.
AI-Powered Issue Prioritization with Business Impact
Enhanced AI prioritization that considers business context including revenue impact, customer data exposure, and compliance requirements alongside technical risk.
Repository Management & Filtering
Hide repositories from dashboard view and persist default severity filters with automatic localStorage synchronization.
Improved Keyboard Shortcuts
Enhanced keyboard shortcuts modal with detailed descriptions, tooltips, and context-aware behavior (disabled on shared scan pages).
Shared Scan Enhancements
Improved authentication handling on shared scan pages. Logged-in users can access AI Fix and Comments, with clickable login links for non-authenticated users.
In Discovery
GitHub Enterprise SSO
Enterprise-grade single sign-on integration for GitHub Enterprise Server and Cloud organizations.
Next Up
Advanced taint analysis
Enhanced cross-file taint tracking with inter-procedural analysis and data flow graphs. Basic taint analysis is already available.
Compliance reporting
Generate compliance reports for SOC 2, ISO 27001, and other security frameworks.
Future Considerations
Machine learning threat detection
AI-powered threat detection using machine learning models trained on security patterns.