AI-native security for modern engineering teams

Ship faster with clarity, not noise

Connect Git repositories or upload ZIPs, run parallel static and secrets scans, and enrich results with AI. Open fix pull requests on GitHub, optionally review new PRs with AI on the diff — inline feedback plus structured coverage for security, correctness, tests, performance, readability, and edge cases — and keep everyone aligned with alerts, realtime updates, org-scoped rules, and subscription-backed limits.

app.threatlenses.io / findings

sample-repo

healthy

Last scan · 2m ago

Scan now

AI insight

“Hardcoded token in config.ts — rotate credentials and use a secret manager.”

high

open

Pull requests

#142 · auth-hardening

Run AI reviews from your task: inline diff comments and a structured summary. Optional auto-review on new PRs.

Pipeline, workspace, and governance in one product

2×

Scanner engines

Static analysis + secrets in parallel

Enrichment + PR review

Finding summaries & fixes; GitHub PR review with structured checks (correctness, security, tests, edge cases, …); org LLM rules

Live

Workspace updates

Socket.IO scan progress, new findings & alerts

Roles & tenants

Super admin through viewer — team or personal orgs

Features built for security and platform teams

Git and uploads, dual scanners, AI enrichment with configurable rules, GitHub fix PRs and structured AI pull request review (security, tests, edge cases, and more), optional RAG chat over code and documents, realtime UI, RBAC, audit trails, and plan-based quotas — aligned with how ThreatLenses runs today.

Git-connected repositories

Register repos and scan the default branch or any branch you pick (GitHub OAuth lists branches when connected). Push webhooks can trigger rescans with optional signature verification.

GitHub fixes & pull requests

Connect GitHub to open fix branches and pull requests from findings. Org admins can enable automatic fix PRs for critical and high issues after scans complete — gated per organization.

AI-assisted PR review

Run AI reviews on GitHub PRs from your task: inline diff comments and a structured summary (security, correctness, tests, performance, readability, and edge cases). Optional auto-review on open PRs with team notifications.

ZIP upload projects

Upload archives for air-gapped or vendor code reviews. Org admins replace the archive anytime; scans unzip instead of cloning.

One-click & API scans

Trigger from the dashboard or workspace API. BullMQ workers fetch, scan, and process asynchronously — no CI YAML required.

Org-wide findings & triage

Filter by severity, status, and path; assign owners; patch status from the workspace. Per-project members with their own roles.

AI enrichment

Deduplicated findings get summaries and suggested fixes. Global and organization LLM analysis rules fold into prompts for consistent policy.

Project Assistant (RAG)

When embeddings are enabled, chat over indexed code, uploaded project documents (PDF, Office, text), and findings — streaming responses with grounded context.

Rules you control

Per-org static rule overrides (severity, enable/disable) plus LLM analysis rules for admins. Super Admin manages global defaults.

Alerts & notifications

Email and webhooks with minimum severity, critical-only modes, and scan-failure notices. In-app notification feed for the org.

Realtime dashboard

Subscribe to org events over Socket.IO: scan started, progress, new findings, and completion — caches refresh as work finishes.

RBAC & invites

Team or personal organizations, expiring invites, and custom organization roles built from a permission catalog — not just fixed roles.

Audit & compliance

Audit logs for admin actions; Super Admin gets platform-wide analytics, billing views, AI metrics, feature flags, and health probes.

Plans & usage

Subscription plans enforce features and monthly quotas (scans, AI, projects). Public pricing loads from the platform — upgrade as you grow.

Pricing

Plans that scale with your security program

Start free, upgrade when you need more scans, AI assistance, and projects. Full quotas and gated capabilities are listed for each tier.

Free

Start here

per month

Explore the full pipeline on a small footprint.

Monthly limits

Security scans / month100
AI-assisted requests / month500
Projects3
Organization members5
Concurrent scans1
AI PR reviews / month0
Uploaded documents0
Audit log retention (days)7 days

Capabilities

Project workspaces
Static code analysis
Secrets detection
Dependency scanning
AI finding enrichment
Project Assistant (RAG chat)
Document upload & RAG
Scan comparison reports
Stored scan reports
PDF export
GitHub fix pull requests
Automatic fix PRs after scan
AI pull request review
Automatic AI PR review
AWS CSPM scanning
Custom static rules
LLM analysis rules
Pipeline rules
Custom organization roles
Audit logs
Email alerts
Webhook alerts
MCP tools integration
Workspace API access
SSO / SAML
Priority support

Create free account

Popular

Pro

Most teams

for volume pricing

Higher limits and room to scale with your org.

Monthly limits

Security scans / month10,000
AI-assisted requests / month50,000
Projects50
Organization members50
Concurrent scans5
AI PR reviews / month200
Uploaded documents0
Audit log retention (days)90 days

Capabilities

Project workspaces
Static code analysis
Secrets detection
Dependency scanning
AI finding enrichment
Project Assistant (RAG chat)
Document upload & RAG
Scan comparison reports
Stored scan reports
PDF export
GitHub fix pull requests
Automatic fix PRs after scan
AI pull request review
Automatic AI PR review
AWS CSPM scanning
Custom static rules
LLM analysis rules
Pipeline rules
Custom organization roles
Audit logs
Email alerts
Webhook alerts
MCP tools integration
Workspace API access
SSO / SAML
Priority support

Get started

Enterprise

Custom

Let's talk

SLA & deployment options

Maximum limits, governance, and deployment flexibility.

Monthly limits

Security scans / monthUnlimited
AI-assisted requests / monthUnlimited
ProjectsUnlimited
Organization membersUnlimited
Concurrent scansUnlimited
AI PR reviews / monthUnlimited
Uploaded documentsUnlimited
Audit log retention (days)365 days

Capabilities

Project workspaces
Static code analysis
Secrets detection
Dependency scanning
AI finding enrichment
Project Assistant (RAG chat)
Document upload & RAG
Scan comparison reports
Stored scan reports
PDF export
GitHub fix pull requests
Automatic fix PRs after scan
AI pull request review
Automatic AI PR review
AWS CSPM scanning
Custom static rules
LLM analysis rules
Pipeline rules
Custom organization roles
Audit logs
Email alerts
Webhook alerts
MCP tools integration
Workspace API access
SSO / SAML
Priority support

Talk to us

Quotas and capabilities come from the subscription catalog. Enterprise agreements may include custom overrides.

End-to-end flow

Trigger → materialize → scan → enrich → notify

Microservices on Redis (BullMQ) and PostgreSQL — workers coordinate fetches and scanners, then findings-processor merges, enriches, and fans out alerts and live events.

Trigger

Dashboard, API, or GitHub push webhook — orchestrator enqueues work on Redis / BullMQ.

Materialize

Clone the repo or unzip an upload into a shared workspace volume for scanners.

Parallel scan

Static analysis and secrets detection run together; coordination merges results.

Enrich & deliver

Dedupe, enrich with AI, persist findings, then fan out email/webhook alerts and live updates. With GitHub: optional fix PRs or AI PR review on new PRs—inline notes plus a structured summary.

JWT access + refresh·Custom org roles & invites·GitHub OAuth & webhooks·PostgreSQL + Redis

Ready to see your code through a clearer lens?

Log in to manage projects, trigger scans, triage org-wide findings, configure alerts and rules, open GitHub fix PRs where enabled, run AI PR review on your diffs (inline comments and structured summary), and use the Assistant where RAG is enabled.