How it works

Shieldfy will analyze every push / pull request to detect vulnerabilities

1. Create account

create a new account with just login with your github hosting provider Github, Bitbucket or Gitlab.

2. Connect the repository you want

Once you connect your repository Shieldfy do initial scan and put some kind of webhook to get notified automatically every time you make a change on your code.

a. Write code, commit and push

Write your code as you are used to do and push it to your git hosting provider.

b. The Git provider will notify Shieldfy about the push.

Your git hosting provider will send a webhook to Shieldfy to let us know about your push. Shieldfy supports all major GIT hosting (Github, Bitbucket and Gitlab).

c. Shieldfy will clone your repository in Isolated container and start analysis

Shieldfy automatically spinning up docker container bundled with our analyzer and clone your code inside the isolated container and start the analysis. The container is removed after the analysis.

d. Shieldfy will report back to the git provider CI with the result as well your email

You will see the result directly into your GIT CI so you can act on it, and you will get notified by email too.

e. You can access the result any time via Shieldfy dashboard

Any time you can access your dashboard at Shieldfy, you will see all information regarding your repositories security according to your data retention plan.

‚Äč