Welcome to Rafter
Rafter provides automated security scanning for your codebase through a powerful API and CLI tool. Detect vulnerabilities, secrets, and security issues before they reach production.Start here
Start your first scan in under one minute with our CLI tool.
Reference Guides
Security Audits
Remote SAST/SCA scanning via CLI or API. Install, scan, fix.
Agent Security
Secret detection, command interception, and skill auditing for Claude Code, Codex CLI, and OpenClaw.
REST API
Programmatic access for custom integrations and automation.
Key Features
Git Integration
Automatically detect repository and branch information from your Git setup.
Multiple Formats
Get results in JSON, Markdown, or integrate with your existing tools.
Easy automation
Continuously scan your repositories for security vulnerabilities and secrets.
Choose Your Integration
Handbook
How does the scanner work? What do we scan for? All your questions answered.
Best Practices
Learn how to implement effective security strategies for you and your team.
Popular Integrations
Automation
Automate security checks in your development workflow and deployment process.
CI/CD
Integrate automated security scanning directly into your CI/CD pipelines for continuous protection.
Reusable snippets
Ready-to-go snippets or build your own, simple to reuse across your pipelines.
Ready to Get Started?
Quick Start
Start your first scan in under one minute with our CLI tool.
View Examples
See real-world examples of how to integrate Rafter into your workflow.