Getting StartedQuickstart
Quickstart
Get your first security scan running in under 5 minutes.
1Create Your Account
Sign up for a free account — no credit card required.
Sign Upbash
# Visit the signup page
https://dso.harshal.cloud/signup2Connect Your Repository
Add a GitHub repository URL in the Repositories page.
Repository URLbash
# Example: Connect a public or private repo
https://github.com/your-org/your-repo3Run Your First Scan
Click "Scan Now" and select the scan types. The platform runs 6 Docker-based scanners in parallel.
| Scanner | Type | What It Finds |
|---|---|---|
| Semgrep | SAST | Code vulnerabilities, injection flaws, insecure patterns |
| Gitleaks | Secrets | API keys, tokens, passwords, certificates in code |
| Grype | SCA | Known CVEs in dependencies (npm, pip, maven, etc.) |
| Trivy | Container | Dockerfile misconfigs, image vulnerabilities, OS packages |
| Checkov | IaC | Terraform, CloudFormation, Kubernetes YAML misconfigs |
| Nuclei | DAST | XSS, SQLi, SSRF, security headers, OWASP Top 10 |
4Review & Fix
View findings on the Threats page. Use AI Auto-Fix to generate patches and create pull requests automatically.
TIP
The AI remediation engine analyzes vulnerability context and generates secure code patches with one click.