OpenSec

OpenSec is an MVP for donated security reviews of public open source GitHub repositories.

Maintainers can request a private report for a public repository. Donors can use their own AI capacity or security tooling to run a review and submit a Markdown report. Public pages show repository metadata and safe summary counts; full report contents stay private to the requester and donor.

Stack

Next.js app in apps/web
Better Auth with GitHub OAuth only
PostgreSQL with Drizzle ORM
Shared UI primitives in packages/ui
Bun and Turborepo for workspace scripts

Development

Install dependencies:

bun install

Create apps/web/.env with local values, then run migrations:

bun run db:migrate

Start the app:

bun run dev:web

The local app is configured for Portless at https://opensec.localhost.

Scripts

bun run dev: start workspace dev tasks
bun run dev:web: start only the web app
bun run build: build workspace packages
bun run check: run Oxlint and Oxfmt
bun run db:generate: generate Drizzle migrations
bun run db:migrate: run Drizzle migrations
bun run db:studio: open Drizzle Studio

Name		Name	Last commit message	Last commit date
Latest commit History 41 Commits
apps/web		apps/web
dev		dev
packages		packages
.gitignore		.gitignore
.oxfmtrc.json		.oxfmtrc.json
.oxlintrc.json		.oxlintrc.json
README.md		README.md
bts.jsonc		bts.jsonc
bun.lock		bun.lock
package.json		package.json
tsconfig.json		tsconfig.json
turbo.json		turbo.json

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

OpenSec

Stack

Development

Scripts

About

Uh oh!

Releases

Packages

Uh oh!

Contributors

Uh oh!

Languages

Folders and files

Latest commit

History

Repository files navigation

OpenSec

Stack

Development

Scripts

About

Topics

Resources

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Uh oh!

Contributors

Uh oh!

Languages

Packages