{"id":48879125,"url":"https://github.com/ghada-ch/gitguard-ai","last_synced_at":"2026-04-16T02:00:51.300Z","repository":{"id":351660473,"uuid":"1211920405","full_name":"Ghada-Ch/gitguard-ai","owner":"Ghada-Ch","description":"AI-powered Git security \u0026 risk scanner for detecting secrets, vulnerabilities, and dangerous code before commits or CI.","archived":false,"fork":false,"pushed_at":"2026-04-16T00:04:25.000Z","size":2306,"stargazers_count":1,"open_issues_count":0,"forks_count":0,"subscribers_count":0,"default_branch":"main","last_synced_at":"2026-04-16T01:13:29.441Z","etag":null,"topics":["ci-cd","cli","code-analysis","developer-tools","devtools","eslint-alternative","git","javascript","nodejs","npm-package","security","security-scanner","snyk-alternative","static-analysis","typescript"],"latest_commit_sha":null,"homepage":"https://www.npmjs.com/package/gitguard-ai","language":"JavaScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"other","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/Ghada-Ch.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2026-04-15T22:12:11.000Z","updated_at":"2026-04-16T00:04:28.000Z","dependencies_parsed_at":null,"dependency_job_id":null,"html_url":"https://github.com/Ghada-Ch/gitguard-ai","commit_stats":null,"previous_names":["ghada-ch/gitguard-ai"],"tags_count":1,"template":false,"template_full_name":null,"purl":"pkg:github/Ghada-Ch/gitguard-ai","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Ghada-Ch%2Fgitguard-ai","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Ghada-Ch%2Fgitguard-ai/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Ghada-Ch%2Fgitguard-ai/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Ghada-Ch%2Fgitguard-ai/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/Ghada-Ch","download_url":"https://codeload.github.com/Ghada-Ch/gitguard-ai/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Ghada-Ch%2Fgitguard-ai/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":31867712,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-04-15T15:24:51.572Z","status":"online","status_checked_at":"2026-04-16T02:00:06.042Z","response_time":69,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["ci-cd","cli","code-analysis","developer-tools","devtools","eslint-alternative","git","javascript","nodejs","npm-package","security","security-scanner","snyk-alternative","static-analysis","typescript"],"created_at":"2026-04-16T02:00:29.570Z","updated_at":"2026-04-16T02:00:51.287Z","avatar_url":"https://github.com/Ghada-Ch.png","language":"JavaScript","funding_links":[],"categories":[],"sub_categories":[],"readme":"# 🛡️ GitGuard AI\n\u003e AI-powered Git security \u0026 risk scanner for modern developers.\n\n\n![npm version](https://img.shields.io/npm/v/gitguard-ai)\n![downloads](https://img.shields.io/npm/dm/gitguard-ai)\n![license](https://img.shields.io/npm/l/gitguard-ai)\n\n\n---\n\n## ⚡ Overview\n\nGitGuard AI analyzes your Git repository and detects:\n\n- 🔐 Secrets (API keys, tokens, passwords)\n- ⚠️ Merge conflicts\n- 📦 Dependency risks\n- 🚨 Deployment issues\n- 🧠 Dangerous code patterns\n- 📏 Large risky changes\n\n---\n\n## 🚀 Installation\n\n### Global install\n```bash\nnpm install -g gitguard-ai\n```\n### Or run instantly (recommended)\n```bash\nnpx gitguard-ai\n```\n\n## 🧪 Usage\n\n### Scan last commit (default)\n```bash\ngitguard-ai\n```\n### Full repository scan\n```bash\ngitguard-ai --full\n```\n\n## 📊 Example Output\n\n```text\n🔍 GitGuard AI running...\n\n⚠️ GitGuard AI Report\n\nRisk Score: 95\n\n📄 README.md\n⚠️ Merge conflict detected\n💡 Unresolved Git conflict markers found in file(s).\n\n📄 backend/Procfile\n⚠️ Deployment config modified\n💡 Changes may affect production startup.\n\n📄 package.json\n⚠️ Dependency changes detected\n💡 New or updated dependencies may introduce risk.\n\n❌ High risk detected. Failing CI.\n```\n## 🌍 Full Scan Mode\n\nAnalyze the entire repository:\n\n- all tracked files (`git ls-files`)\n- dependency footprint\n- security patterns\n- deployment configuration\n\n```bash\ngitguard-ai --full\n```\n\n## 🤖 GitHub Actions (CI Integration)\n\nRun GitGuard AI automatically on every pull request:\n\n```yaml\nname: GitGuard AI\n\non:\n  pull_request:\n\njobs:\n  scan:\n    runs-on: ubuntu-latest\n\n    steps:\n      - uses: actions/checkout@v4\n\n      - name: Setup Node\n        uses: actions/setup-node@v4\n        with:\n          node-version: 20\n\n      - name: Run GitGuard AI\n        run: npx gitguard-ai --full\n\n```\n## 🧠 How It Works\n\nGit Repository\n      ↓\nGit Diff / File Scan\n      ↓\nRule Engine\n      ↓\nRisk Scoring System\n      ↓\nCLI Output / CI Failure\n## 📈 Risk Levels\n\n| Score | Level | Meaning |\n|------|------|--------|\n| 0–39 | 🟢 Low | Safe changes |\n| 40–69 | 🟡 Medium | Needs review |\n| 70–100 | 🔴 High | Risky changes |\n\n## 🔍 Detection Rules\n\nGitGuard AI detects:\n\n- 🔐 Secrets (API keys, tokens, passwords)\n- ⚠️ Merge conflicts (`\u003c\u003c\u003c\u003c\u003c\u003c\u003c`)\n- 📦 Dependency changes (`package.json`)\n- 🚨 Deployment changes (`Procfile`)\n- 🧠 Dangerous JS functions (`eval`, `exec`)\n- 📏 Large diff changes\n\n## 📁 Workflow Example\n\n```bash\ngit add .\ngit commit -m \"new feature\"\ngitguard-ai\ngit push\n\n```\n## 🚀 Roadmap\n\n- [ ] GitHub PR bot comments 🤖\n- [ ] JSON output mode (`--json`)\n- [ ] `.gitguardignore` support\n- [ ] Severity grouping (HIGH / MEDIUM / LOW)\n- [ ] AST-based deep analysis\n- [ ] AI-powered fix suggestions\n\n## 💡 Vision\n\n\u003e GitGuard AI becomes the ESLint of security \u0026 Git risk analysis.\n\nFast. Lightweight. Developer-first.\n\n## 👤 Author\n\nBuilt with passion for modern development workflows.\n\nMaintained by **Ghada Chouichi**.\n\n---\n\n## 📄 License\n\nMIT\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fghada-ch%2Fgitguard-ai","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fghada-ch%2Fgitguard-ai","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fghada-ch%2Fgitguard-ai/lists"}