A comprehensive platform for automated security scanning of GitHub repositories to detect exposed secrets and sensitive information. This project extends the original git-alerts CLI tool with a web-based platform.
GitAlerts provides a complete solution for monitoring GitHub repositories for security vulnerabilities:
- Automated Scanning - Detect exposed secrets using TruffleHog
- Multiple Discovery Methods - Scan organization repos, user repos, and GitHub search results
- Smart Filtering - Reduce false positives with configurable ignore rules
- Web Interface - Manage scans and view results through a modern React UI
- API Access - RESTful API with interactive documentation
- AI Integration - MCP server for LLM/AI tool integration
This project consists of three main components:
api/- Django REST API backend (API Documentation)ui/- React frontend application (UI Documentation)mcp-server/- MCP server for AI/LLM integration (MCP Server Documentation)
- Clone the repository:
git clone https://github.com/YOUR_USERNAME/git-alerts-api.git
cd git-alerts-api- Set up the API:
cd api
# See api/README.md for detailed setup instructions- Set up the UI (optional):
cd ui
# See ui/README.md for detailed setup instructions- Set up the MCP Server (optional):
cd mcp-server
# See mcp-server/README.md for detailed setup instructions- API Documentation - Backend API setup and usage
- UI Documentation - Frontend application setup
- MCP Server Documentation - AI/LLM integration setup
- Architecture Documentation - System architecture overview