All-in-One DevSecOps pipeline. Zero config. Fully free.
Detect secrets, vulnerable dependencies, and code vulnerabilities — automatically, on every push and pull request.
Secret Scan → Gitleaks
Dependency → npm / pip / composer audit
Code Quality → Semgrep
Notification → Telegram
1. Copy dua file ke repo kamu:
cp .github/workflows/omniscan.yml your-repo/.github/workflows/
cp .omniscan.yml your-repo/2. Pilih mode di .omniscan.yml:
mode: community # tidak perlu API key apapun
notify:
telegram: ${{ secrets.TELEGRAM_TOKEN }}
gate:
block_on: high3. Push:
git add . && git commit -m "feat: add OmniScan" && git pushPipeline langsung jalan. ✅
| Community | Power | |
|---|---|---|
| Secret Scan (Gitleaks) | ✅ | ✅ |
| Dependency Scan | npm/pip audit | Snyk |
| Code Quality | Semgrep | SonarCloud |
| Private repo | ✅ | ❌ |
| API key required | ❌ | ✅ |
| Biaya | Gratis | Gratis* |
*Gratis untuk public repo
- Getting Started — Setup lengkap
- Community Mode — Default, tanpa API key
- Power Mode — Snyk + SonarCloud
- Community Mode — Gitleaks + audit + Semgrep
- Auto-detect framework (Next.js, Laravel, Python, dll.)
- Quality gate — block merge otomatis
- Notifikasi Telegram
- Power Mode — Snyk + SonarCloud
- GitHub App — install 1 klik tanpa copy file
- PR comment otomatis dengan detail hasil scan
- Web dashboard
Kontribusi sangat disambut!
git clone https://github.com/vuxyn/omni-scan.git
cd omni-scan
# Buat branch baru
git checkout -b feature/your-feature
# Submit Pull RequestLihat CONTRIBUTING.md untuk panduan lengkap.
MIT — bebas digunakan, dimodifikasi, dan didistribusikan.