Welcome to Rafter
Rafter provides automated security scanning for your codebase through a powerful API and CLI tool. Detect vulnerabilities, secrets, and security issues before they reach production.Start here
Start your first scan in under one minute with our CLI tool.
Reference Guides
CLI Tool
Command-line interface for local development and CI/CD pipelines. Supports npm, pnpm, and yarn.
REST API
Programmatic access for custom integrations, automation, and third-party tools.
Key Features
Git Integration
Automatically detect repository and branch information from your Git setup.
Multiple Formats
Get results in JSON, Markdown, or integrate with your existing tools.
Easy automation
Continuously scan your repositories for security vulnerabilities and secrets.
Choose Your Integration
Handbook
How does the scanner work? What do we scan for? All your questions answered.
Best Practices
Learn how to implement effective security strategies for you and your team.
Popular Integrations
Automation
Automate security checks in your development workflow and deployment process.
CI/CD
Integrate automated security scanning directly into your CI/CD pipelines for continuous protection.
Reusable snippets
Ready-to-go snippets or build your own, simple to reuse across your pipelines.
Ready to Get Started?
Quick Start
Start your first scan in under one minute with our CLI tool.
View Examples
See real-world examples of how to integrate Rafter into your workflow.