rip-rip
Rest In Peace, Vulnerabilities — terminal-based security auditing tool. `npx rip-rip` and you're scanning.
rip-rip is a Rust-powered security auditor distributed as an npm package — local-filesystem secret scanning, exposed-file detection on remote URLs, security-header analysis, and a TOML-configurable scan profile. Run it directly via `npx rip-rip`, drop a `.ripconfig.toml` in the repo, or wire it into CI with `--auto`. MIT-licensed and public.
- Rust
- npm distribution
- grep-searcher
- TOML config
- GitHub Actions (release)
- MIT license
rip-rip ("Rest In Peace, Vulnerabilities") is a terminal-first security auditor, written in Rust, packaged for npm so you can run it from any project that already has Node on the PATH:
npx rip-rip
# or
npm install -g rip-rip && rip --help
The point of the npm wrapper is reach. Every CI environment,
every developer laptop, every onboarding script already has a
way to invoke npx; security tooling that requires
a system package manager keeps getting skipped. rip-rip ships
a prebuilt binary inside the npm payload, so the first run is
a single command.
What it actually scans
- Local secret detection — grep-searcher
engine scanning across 15+ file types (JS/TS, Python, Ruby,
PHP, Java, Go, Rust, C/C++, C#, YAML/JSON), with
.envparsing that filters trivial values so the report doesn't drown in false positives. - Web vulnerability sweep — exposed file
detection (
.env,.git/config, common backups), security-header analysis (CSP, HSTS, X-Frame-Options),robots.txtinformation disclosure checks, HTTP endpoint enumeration with smart timeouts. - Severity-coded reporting — Critical → High → Medium → Low color bands, per-finding recommendations, JSON output for downstream tooling.
Three modes
- Interactive.
rip configwalks you through a multi-select menu, writes a.ripconfig.toml, then scans. Good for first-run on a new repo. - Auto.
rip --auto scanuses defaults, no prompts. Good for CI — the exit code reflects the worst severity found. - Bring-your-own-config.
rip --config ./custom.toml scan. Team-wide scan profiles live in source control next to the code they audit.
Why it's worth shipping
Security tools die when the activation cost is high. Most devs will accept "run a CLI command" but not "install another package manager + sign up for a SaaS dashboard." rip-rip is deliberately unfancy: one command, useful output, MIT license, public on GitHub, runs from any laptop. The severity-coded terminal output is built to be screenshotable in a Slack thread, which is the only secret scanner usage pattern that ever survives contact with a real team.
Distribution
Binaries are built by GitHub Actions on tag push, packed into
the npm tarball (bin/rip-linux-x64 + a
postinstall.js shim), and published to
npm. The
Rust source is on
GitHub.
Straight from the source
The project's own README.
Rendered in place — every link, image, and code block carried over from the repo. The page below is what a contributor would see opening the project for the first time.
████████████████████████████ █▌ ▐█ █▌ ██▀███ ██▓ ██▓███ ▐█ █▌ ▓██ ▒ ██▒▓██▒▓██░ ██▒ ▐█ █▌ ▓██ ░▄█ ▒▒██▒▓██░ ██▓▒ ▐█ █▌ ▒██▀▀█▄ ░██░▒██▄█▓▒ ▒ ▐█ █▌ ░██▓ ▒██▒░██░▒██▒ ░ ░ ▐█ █▌ ░ ▒▓ ░▒▓░░▓ ▒▓▒░ ░ ░ ▐█ █▌ ░▒ ░ ▒░ ▒ ░░▒ ░ ▐█ █▌ ░░ ░ ▒ ░░░ ▐█ █▌ ░ ░ ▐█ █▌ ▐█ ████████████████████████████
🚀 Quick Start
█████████████████████████████████████████████████████████████████████████████████████████████████████
█▌ █████ █ ██ ██▓ ▄████▄ ██ ▄█▀ ██████ ▄▄▄█████▓ ▄▄▄ ██▀███ ▄▄▄█████▓ ▐█
█▌ ▒██▓ ██▒ ██ ▓██▒▓██▒▒██▀ ▀█ ██▄█▒ ▒██ ▒ ▓ ██▒ ▓▒▒████▄ ▓██ ▒ ██▒▓ ██▒ ▓▒ ▐█
█▌ ▒██▒ ██░▓██ ▒██░▒██▒▒▓█ ▄ ▓███▄░ ░ ▓██▄ ▒ ▓██░ ▒░▒██ ▀█▄ ▓██ ░▄█ ▒▒ ▓██░ ▒░ ▐█
█▌ ░██ █▀ ░▓▓█ ░██░░██░▒▓▓▄ ▄██▒▓██ █▄ ▒ ██▒░ ▓██▓ ░ ░██▄▄▄▄██ ▒██▀▀█▄ ░ ▓██▓ ░ ▐█
█▌ ░▒███▒█▄ ▒▒█████▓ ░██░▒ ▓███▀ ░▒██▒ █▄ ▒██████▒▒ ▒██▒ ░ ▓█ ▓██▒░██▓ ▒██▒ ▒██▒ ░ ▐█
█▌ ░░ ▒▒░ ▒ ░▒▓▒ ▒ ▒ ░▓ ░ ░▒ ▒ ░▒ ▒▒ ▓▒ ▒ ▒▓▒ ▒ ░ ▒ ░░ ▒▒ ▓▒█░░ ▒▓ ░▒▓░ ▒ ░░ ▐█
█▌ ░ ▒░ ░ ░░▒░ ░ ░ ▒ ░ ░ ▒ ░ ░▒ ▒░ ░ ░▒ ░ ░ ░ ▒ ▒▒ ░ ░▒ ░ ▒░ ░ ▐█
█▌ ░ ░ ░░░ ░ ░ ▒ ░░ ░ ░░ ░ ░ ░ ░ ░ ░ ▒ ░░ ░ ░ ▐█
█▌ ░ ░ ░ ░ ░ ░ ░ ░ ░ ░ ░ ▐█
█▌ ░ ▐█
█████████████████████████████████████████████████████████████████████████████████████████████████████
Install & Run (NPX - Recommended)
# Run immediately without installation
npx rip-rip
# Or install globally
npm install -g rip-rip
rip --help
Build from Source
# Clone the repository
git clone https://github.com/saintpetejackboy/rip
cd rip
# Build with Cargo
cargo build --release
# Run the scanner
./target/release/rip --help
.ed"""" """$$$$be.
-" ^""**$$$e.
." '$$$c
/ "4$$b
d 3 $$$$
$ * .$$$$$$
.$ ^c $$$$$e$$$$$$$$.
d$L 4. 4$$$$$$$$$$$$$$b
$$$$b ^ceeeee. 4$$ECL.F*$$$$$$$
$$$$P d$$$$F $ $$$$$$$$$- $$$$$$
3$$$F "$$$$b $"$$$$$$$ $$$$*"
$$P" "$$b .$ $$$$$...e$$
*c .. $$ 3$$$$$$$$$$eF
%ce"" $$$ $$$$$$$$$$*
*$e. *** d$$$$$"L$$
$$$ 4J$$$$$% $$$
$"'$=e....$*$$**$cz$$"
$ *=%4.$ L L$ P3$$$F
$ "%*ebJLzb$e$$$$$b
%.. 4$$$$$$$$$$
$$$e z$$$$$$$$$$
"*$c "$$$$$$$P"
"""*$$$$$$$"
✨ Features
▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄
█ █
█ ░░▒▒▓▓██ ▀█▀ ▄▀█ █▀█ █▀ █▀▀ ▀█▀ █▀▀ █▀▀ ▄▀█ ▀█▀ █ █ █▀█ █▀▀ █▀ ██▓▓▒▒░░ █
█ ░░▒▒▓▓██ █ █▀█ █▀▄ █▄ ██▄ █ █▀ ██▄ █▀█ █ █▄█ █▀▄ ██▄ ▄█ ██▓▓▒▒░░ █
█ █
█ -= H3LL4 WaR3Z T00L5 4ND 31337 3XPLO1T5 4T Y0UR S3RV1C3 =- █
▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀
🔍 Local File Scanning
- Lightning-fast secret detection using grep-searcher engine
- Smart .env parsing with trivial value filtering
- Comprehensive coverage for 15+ programming languages
- Configurable ignore patterns (.git, node_modules, etc.)
- Real-time progress bars and colored output
🌐 Web Vulnerability Scanning
- Exposed file detection (.env, .git/config, backups)
- Security header analysis (CSP, HSTS, X-Frame-Options)
- Information disclosure via robots.txt
- HTTP endpoint enumeration with smart timeouts
🎨 Beautiful Terminal UI
- Interactive setup with multi-select menus
- ASCII art branding and professional styling
- Severity-based color coding (Critical → Low)
- Detailed vulnerability reports with recommendations
⚙️ Flexible Configuration
- Auto mode for CI/CD pipelines (
--auto) - TOML configuration files (
.ripconfig.toml) - Environment-based customization
- Team-shareable settings
🎯 Usage Examples
████████████████████████████████████████████████████████████████████████████████████
█▌ ▓█████ ▒██ ██▒ ▄▄▄ ███▄ ▄███▓ ██▓███ ██▓ ▓█████ ██████ ▐█
█▌ ▓█ ▀ ▒▒ █ █ ▒░▒████▄ ▓██▒▀█▀ ██▒▓██░ ██▒▓██▒ ▓█ ▀ ▒██ ▒ ▐█
█▌ ▒███ ░░ █ ░▒██ ▀█▄ ▓██ ▓██░▓██░ ██▓▒▒██░ ▒███ ░ ▓██▄ ▐█
█▌ ▒▓█ ▄ ░ █ █ ▒ ░██▄▄▄▄██ ▒██ ▒██ ▒██▄█▓▒ ▒▒██░ ▒▓█ ▄ ▒ ██▒ ▐█
█▌ ░▒████▒▒██▒ ▒██▒ ▓█ ▓██▒▒██▒ ░██▒▒██▒ ░ ░░██████▒░▒████▒▒██████▒▒ ▐█
█▌ ░░ ▒░ ░▒▒ ░ ░▓ ░ ▒▒ ▓▒█░░ ▒░ ░ ░▒▓▒░ ░ ░░ ▒░▓ ░░░ ▒░ ░▒ ▒▓▒ ▒ ░ ▐█
█▌ ░ ░ ░░░ ░▒ ░ ▒ ▒▒ ░░ ░ ░░▒ ░ ░ ░ ▒ ░ ░ ░ ░░ ░▒ ░ ░ ▐█
█▌ ░ ░ ░ ░ ▒ ░ ░ ░░ ░ ░ ░ ░ ░ ░ ▐█
█▌ ░ ░ ░ ░ ░ ░ ░ ░ ░ ░ ░ ░ ▐█
████████████████████████████████████████████████████████████████████████████████████
▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄
██▄▄▄ ▄▄▄██
██▀▀▀ ⫸ H4X0R US4G3 3X4MPL3S - L34RN TH3 W4YS 0F TH3 31337 ⫷ ▀▀▀██
██▄▄▄ ▄▄▄██
▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀
Basic Repository Scan
# Scan current directory with default settings
rip
# Scan specific directory in auto mode (no prompts)
rip --auto scan /path/to/project
# Scan with web vulnerability checking
rip scan --web --url https://example.com
Interactive Configuration
# Run interactive setup
rip config
# Show current configuration
rip config --show
# Reset to defaults
rip config --reset
Advanced Options
# Use custom config file
rip --config ./custom-config.toml scan
# Skip configuration loading
rip --skip-config --auto scan
# Force reconfiguration
rip --reconfigure scan
( ___ ) ( ___ ) | |~~~~~~~~~~~~~~~~~~~~~~~~| | | | ██▀███ ██▓ ██▓███ | | | | ▓██ ▒ ██▒▓██▒▓██░ ██▒ | | | | ▓██ ░▄█ ▒▒██▒▓██░ ██▓▒ | | | | ▒██▀▀█▄ ░██░▒██▄█▓▒ ▒ | | | | ░██▓ ▒██▒░██░▒██▒ ░ ░ | | | | ░ ▒▓ ░▒▓░░▓ ▒▓▒░ ░ ░ | | | | ░▒ ░ ▒░ ▒ ░░▒ ░ | | | | ░░ ░ ▒ ░░░ | | | | ░ ░ | | ||~~~~~~~~~~~~~~~~~~~~~~~~|| () ()
📋 Command Reference
░░▒▒▓▓████████████████████████████████████████████████████████████████████████████████████████████████▓▓▒▒░░
▒▒▓▓██ ██▓▓▒▒
▓▓██ █▀▀ █▀█ █▀▄▀█ █▀▄▀█ ▄▀█ █▄░█ █▀▄ █▀█ █▀▀ █▀▀ █▀▀ █▀█ █▀▀ █▄░█ █▀▀ █▀▀ ██▓▓
██ █▄▄ █▄█ █░▀░█ █░▀░█ █▀█ █░▀█ █▄▀ █▀▄ ██▄ █▀░ ██▄ █▀▄ ██▄ █░▀█ █▄▄ ██▄ ██
▓▓██ ██▓▓▒▒
▒▒▓▓██ ⟨ M0ST 31337 T00L PARA META4S 4ND FL4GS UPD4T3D D41LY ⟩ ██▓▓▒▒
░░▒▒▓▓████████████████████████████████████████████████████████████████████████████████████████████████▓▓▒▒░░
Global Flags
--auto Run with default settings, no interactive prompts
--config <FILE> Path to configuration file
--reconfigure Force reconfiguration, ignore existing config
--skip-config Skip configuration loading/saving
-v, --verbose Enable verbose output
-q, --quiet Suppress all non-essential output
-j, --json Output results in JSON format
-p, --path <PATH> Repository path to scan (default: current directory)
-h, --help Print help
-V, --version Print version
Commands
scan Scan for vulnerabilities (default operation)
config Configure RIP settings interactively
version Display version information
help Print help message
🔧 Configuration
RIP uses a .ripconfig.toml file for persistent settings:
repository_path = "."
env_filename = ".env"
env_keys = ["API_KEY", "DATABASE_URL", "STRIPE_SECRET_KEY", "JWT_SECRET"]
file_extensions = ["js", "ts", "jsx", "tsx", "py", "rb", "php", "java", "go", "rs"]
ignore_patterns = ["node_modules", ".git", "target", "dist", "build", ".next"]
enable_web_scan = false
web_url = ""
Supported File Types
- JavaScript/TypeScript:
.js,.ts,.jsx,.tsx - Python:
.py - Ruby:
.rb - PHP:
.php - Java:
.java - Go:
.go - Rust:
.rs - C/C++:
.c,.cpp - C#:
.cs - YAML/JSON:
.yaml,.yml,.json - Markup:
.xml,.md,.txt
📊 Example Output
████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████
█▌ ▓█████ ▒██ ██▒ ▄▄▄ ███▄ ▄███▓ ██▓███ ██▓ ▓█████ ▒█████ █ ██ ▄▄▄█████▓ ██▓███ █ ██ ▄▄▄█████▓ ▐█
█▌ ▓█ ▀ ▒▒ █ █ ▒░▒████▄ ▓██▒▀█▀ ██▒▓██░ ██▒▓██▒ ▓█ ▀ ▒██▒ ██▒ ██ ▓██▒▓ ██▒ ▓▒▓██░ ██▒ ██ ▓██▒▓ ██▒ ▓▒ ▐█
█▌ ▒███ ░░ █ ░▒██ ▀█▄ ▓██ ▓██░▓██░ ██▓▒▒██░ ▒███ ▒██░ ██▒▓██ ▒██░▒ ▓██░ ▒░▓██░ ██▓▒▓██ ▒██░▒ ▓██░ ▒░ ▐█
█▌ ▒▓█ ▄ ░ █ █ ▒ ░██▄▄▄▄██ ▒██ ▒██ ▒██▄█▓▒ ▒▒██░ ▒▓█ ▄ ▒██ ██░▓▓█ ░██░░ ▓██▓ ░ ▒██▄█▓▒ ▒▓▓█ ░██░░ ▓██▓ ░ ▐█
█▌ ░▒████▒▒██▒ ▒██▒ ▓█ ▓██▒▒██▒ ░██▒▒██▒ ░ ░░██████▒░▒████▒ ░ ████▓▒░▒▒█████▓ ▒██▒ ░ ▒██▒ ░ ░▒▒█████▓ ▒██▒ ░ ▐█
█▌ ░░ ▒░ ░▒▒ ░ ░▓ ░ ▒▒ ▓▒█░░ ▒░ ░ ░▒▓▒░ ░ ░░ ▒░▓ ░░░ ▒░ ░ ░ ▒░▒░▒░ ░▒▓▒ ▒ ▒ ▒ ░░ ▒▓▒░ ░ ░░▒▓▒ ▒ ▒ ▒ ░░ ▐█
█▌ ░ ░ ░░░ ░▒ ░ ▒ ▒▒ ░░ ░ ░░▒ ░ ░ ░ ▒ ░ ░ ░ ░ ░ ▒ ▒░ ░░▒░ ░ ░ ░ ░▒ ░ ░░▒░ ░ ░ ░ ▐█
█▌ ░ ░ ░ ░ ▒ ░ ░ ░░ ░ ░ ░ ░ ░ ░ ▒ ░░░ ░ ░ ░ ░░ ░░░ ░ ░ ░ ▐█
█▌ ░ ░ ░ ░ ░ ░ ░ ░ ░ ░ ░ ░ ░ ░ ░ ▐█
████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████
▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄
█ ░▒▓█▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀█▓▒░ █
█ ░▒▓█ 3X4MPL3 0UTP0T - TH1S 1S H0W Y0UR 5C4N W1LL L00K WH3N R1PP1NG T4RG3T5! █▓▒░ █
█ ░▒▓█▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄█▓▒░ █
▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀
$ rip --auto scan
██▀███ ██▓ ██▓███
▓██ ▒ ██▒▓██▒▓██░ ██▒
▓██ ░▄█ ▒▒██▒▓██░ ██▓▒
▒██▀▀█▄ ░██░▒██▄█▓▒ ▒
░██▓ ▒██▒░██░▒██▒ ░ ░
Rest In Peace, Vulnerabilities
[RIP-SCAN] Starting vulnerability scan...
Scanning path: .
Scanning for 6 environment variable values...
████████████████████████████████████████ 100% [00:00:01] Complete!
Scan Results
Files scanned: 847
Scan duration: 1.23s
Log file: /tmp/rip-20250127_143021.log
Found 4 potential vulnerabilities:
File: ./src/config.js
Line:12 Key: API_KEY
const apiKey = 'sk-live_1234567890abcdef'
Line:18 Key: DATABASE_URL
dbUrl: 'postgresql://user:[email protected]:5432/prod'
Recommendation: Review these files to ensure secrets are not exposed.
[RIP-SCAN] Scan complete!
🚀 CI/CD Integration
GitHub Actions
name: Security Scan
on: [push, pull_request]
jobs:
security:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v3
- name: Run RIP Security Scan
run: npx rip-rip --auto scan
GitLab CI
security_scan:
script:
- npx rip-rip --auto scan
only:
- merge_requests
- master
🔐 Security & Privacy
- Read-only operations: RIP never modifies your files
- Local processing: No data is sent to external servers
- Minimal permissions: Runs with standard user privileges
- Secure defaults: Sensitive patterns excluded from logs
- Open source: Full transparency with community review
🛠️ Development
Prerequisites
- Rust 1.70+
- Cargo package manager
- Git
Building
# Clone repository
git clone https://github.com/saintpetejackboy/rip
cd rip
# Install dependencies and build
cargo build
# Run tests
cargo test
# Format code
cargo fmt
# Run linter
cargo clippy
Project Structure
rip/
├── src/
│ ├── main.rs # Application coordinator
│ ├── cli.rs # Command-line interface
│ ├── config.rs # Configuration management
│ ├── scanner.rs # Local file scanning
│ ├── tui.rs # Terminal user interface
│ └── web_scanner.rs # Web vulnerability scanning
├── art/ # ASCII art assets
├── tests/ # Integration tests
├── md/ # Documentation
├── TODO/ # Development roadmap
└── Cargo.toml # Rust dependencies
📈 Performance
- Small repos (< 1MB): Sub-second scanning
- Medium repos (1-10MB): 1-5 seconds
- Large repos (10-100MB): 5-30 seconds
- Memory usage: < 50MB typical
- CPU usage: Single-threaded, efficient regex engine
🤝 Contributing
We welcome contributions! Please see our Contributing Guidelines for details.
Quick Contribution Guide
- Fork the repository
- Create a feature branch:
git checkout -b feature/amazing-feature - Make your changes and add tests
- Run the full test suite:
cargo test - Format your code:
cargo fmt - Submit a pull request
📝 License
This project is licensed under the MIT License - see the LICENSE file for details.
🙋 Support
- Documentation: Check the
md/directory for detailed guides - Issues: Report bugs on GitHub Issues
- Security: For security vulnerabilities, email [email protected]
- Community: Join discussions in GitHub Discussions
🎯 Roadmap
- NPM publishing for easy
npx rip-ripinstallation - JSON output format for CI/CD integration
- Enhanced secret detection with entropy analysis
- Better error handling and user experience
- Git history scanning for committed secrets
- Docker image for containerized scanning
See TODO/WORK.md for detailed work items and production readiness checklist.
████████████████████████████████████████████████████████████████████
█▌$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$▐█
█▌$$▄▄▄██▀▀▀▄▄▄$$$$$$$▄████▄$$$██$▄█▀$$$$▄▄▄▄$$$$▒█████$▓██$$$██▓$▐█
█▌$$$$▒██$$▒████▄$$$$▒██▀$▀█$$$██▄█▒$$$$▓█████▄$▒██▒$$██▒▒██$$██▒$▐█
█▌$$$$░██$$▒██$$▀█▄$$▒▓█$$$$▄$▓███▄░$$$$▒██▒$▄██▒██░$$██▒$▒██$██░$▐█
█▌$▓██▄██▓$░██▄▄▄▄██$▒▓▓▄$▄██▒▓██$█▄$$$$▒██░█▀$$▒██$$$██░$░$▐██▓░$▐█
█▌$$▓███▒$$$▓█$$$▓██▒▒$▓███▀$░▒██▒$█▄$$$░▓█$$▀█▓░$████▓▒░$░$██▒▓░$▐█
█▌$$▒▓▒▒░$$$▒▒$$$▓▒█░░$░▒$▒$$░▒$▒▒$▓▒$$$░▒▓███▀▒░$▒░▒░▒░$$$██▒▒▒$$▐█
█▌$$▒$░▒░$$$$▒$$$▒▒$░$$░$$▒$$$░$░▒$▒░$$$▒░▒$$$░$$$░$▒$▒░$▓██$░▒░$$▐█
█▌$$░$░$░$$$$░$$$▒$$$░$$$$$$$$░$░░$░$$$$$░$$$$░$░$░$░$▒$$▒$▒$░░$$$▐█
█▌$$░$$$░$$$$$$$$░$$░░$░$$$$$$░$$░$$$$$$$░$$$$$$$$$$░$░$$░$░$$$$$$▐█
█▌$$$$$$$$$$$$$$$$$$$░$$$$$$$$$$$$$$$$$$$$$$$$░$$$$$$$$$$░$░$$$$$$▐█
█▌$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$▐█
████████████████████████████████████████████████████████████████████
Star on GitHub](https://github.com/saintpetejackboy/rip) │ [📦 View on NPM](https://www.npmjs.com/package/rip)
^
| |
@#####@
(### ###)-.
.(### ###) \
/ (### ###) )
(=- .@#####@|_--"
/\ \_|l|_/ (\
(=-\ |l| /
\ \.___|l|___/
/\ |_| /
(=-\._________/\
\ /
\._________/
# ---- #
# __ #
\########/
iWs ,W[
W@@W. g@@[
i@@@@@s g@@@@W
@@@@@@@W. ,W@@@@@@
]@@@@@@@@@W. ,_______. ,m@@@@@@@@i
,@@@@@@@@@@@@W@@@@@@@@@@@@@@mm_g@@@@@@@@@@[
d@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
i@@@@@@@A*~~~~~VM@@@@@@@@@@Af~~~~V*@@@@@@@@@i
@@@@@A~ 'M@@@@@@A` 'V@@@@@@b
d@@@*` Y@@@@f V@@@@@.
i@@A` M@@P V@@@b
,@@A '@@ !@@@.
W@P @[ '@@W
d@@ , ]! ]@@b
g@@[ ,W@@s ] ,W@@s @@@i
i@@@[ W@@@@i ] W@@@@i @@@@i
i@@@@[ @@@@@[ ] @@@@@[ @@@@@i
g@@@@@[ @@@@@! @[ @@@@@[ @@@@@@i
d@@@@@@@ !@@@P iAW !@@@A ]@@@@@@@i
W@@@@@@@@b '~~ ,Z Yi '~~ ,@@@@@@@@@
'@@@@@@@@s Z Y. ,W@@@@@@@@A 'M@@@*f**W. ,Z Vs ,W*~~~M@@@f 'M@ 'Vs. ,z~ 'N_ ,Z~ d@P M@@@ ~\-__ __z/ ,gmW@@mm_ '+e_. __=/ ,@@@@ 'VMW g@@@@@@@@@W ~~~ ,WAf ~N. @@@@@@@@@@@! ,Z
V. !M@@@@@@@@f gf-
'N. '~*f~ ,Z Vc. _Zf ~e_ ,gY~ 'V=_ -@@D ,gY~ ' ~\=__. ,__z=~
'~~~==Y*f~~~
Build something like this
Want a tool like this for your shop?
We've shipped this kind of thing before. Twenty-minute intro call, no slides.