Corgea
Automatically find and fix insecure code
363 followers
Automatically find and fix insecure code
363 followers
Corgea is an AI-powered security platform that automatically finds, triages, and fixes insecure code. Sign up today for free to try Corgea.
Interactive
Free Options
Launch Team / Built With
very useful one for developers and owners. Does it only check when take a pull request or it solve errors based on entire codebase?
Corgea
@replibee thanks! you can do both on PR and full codebase scan.
@ahmad_sadeddin this is amazing
Corgea
🚀 Hello Product Hunt! We’re thrilled to introduce Corgea 🐕 – the AI-powered developer platform that automatically finds, and fixes insecure code. 🛠️
Why Corgea?
Developers just want to ship code without worrying about security. Traditional tools miss a lot of vulnerabilities and don’t help fix issues when they're found. Corgea changes that. Instead Corgea uses LLMs to review your code to find vulnerabilities, and writes the security fix for you to approve it.
What makes Corgea special?
🔍 Finds what matters: Corgea detects business logic flaws, API security issues, broken auth and critical vulnerabilities that is often missed.
🪄 Fixes the code for you: AI-generated fixes allow developers to fix security flaws instantly within their workflows.
🚫 No more alert fatigue: Our AI automatically triages findings, filtering out false positives and low-priority vulnerabilities.
🔗 Integrates where you work: Works seamlessly with GitHub, GitLab, Azure DevOps, IDEs, and CI/CD pipelines.
🦺 Built for real-world security: Corgea supports 900+ CWEs across Python, JavaScript, Typescript, Ruby, Go, Java, Kotlin, C, C++, PHP, C#, and their frameworks.
Hundreds of users signing, and feedback has been phenomenal. Our team is shipping fast, constantly improving detection and fix capabilities.
🔥 Exclusive for the PH Community! 🔥
Get 50% off our plans if you sign up in April to Mid-May! Secure your spot now: https://corgea.app
Thank you @garrytan for hunting us!
Have seen some really terrible security incidents at some of the renowned brands - Issue? - Vulnerabilities were found in their code, especially the ones that should've never been there already.
DevSecOps should be adopted as a Default, not an option, by every company that's developing any kind of apps today. Now with Vibe Coding, this can come in extremely handy!
A much-needed mission, after all. Great work, team @Corgea! @ahmad_sadeddin
Corgea
@pj_vm absolutely, and we've seen these incidents time and time again unfortunately. Thanks for the comment!
You're welcome,@ahmad_sadeddin!
SyncSignature
Oh yea! This could really benefit vibe coders! I saw a couple of tweets of builders/makers having to rewrite their whole products due to compromised security. Great one @garrytan @ahmad_sadeddin @adambronte @tamara_abualhsan
Corgea
@neelptl2602 Thanks! You hit the nail on the head! We're seeing vibe coders use Corgea to prevent being in that exact situation. It's a security agent for your coding agents.
@neelptl2602 @ahmad_sadeddin Precisely as you stated. Now builders don't have to worry about having security issues in their products. Amazing!!!
Jo
I think a product like this will fit directly into a vibe coder's toolkit - much needed. Am curious though - as someone non-technical, are there ways you've built in that I can trust that your AI hasn't introduced different issues while trying to fix issues introduced by another AI that wrote the original code :)
Corgea
@ragsontherocks thanks! that's definitely a great question. We've built a pipeline to focus on quality and helping ensure things don't break along the way. However, there are certain pieces of context we don't have and we recommend reviewing the changes before applying them.
An interesting concept. upvoted and bookmarked. good luck with the launch, team @Corgea
Corgea
@taniabell thank you!
Typeform Alternative By Buildform
Very cool idea! Love that you’re tackling security in the dev workflow before it becomes a post-deploy nightmare.
Curious if there’s a way to expose any of these checks via webhook or API? Could be fun to integrate with something like buildform - we’re seeing dev teams use it to build quick internal tools, and it’d be slick to have auto-security validation baked into the form logic layer.
Congrats on the launch! 🛡️
Corgea
@stanlyya thank you Harsha! You're absolutely correct, catching these before is much easier to correct.
Yes, you can absolutely perform these checks using our CLI and APIs.
https://docs.corgea.app/cli
https://docs.corgea.app/new_api