Directories
¶
| Path | Synopsis |
|---|---|
|
Package agent provides the agent runtime for Zero
|
Package agent provides the agent runtime for Zero |
|
Package analyzer provides confidence scoring for git-history-based analysis
|
Package analyzer provides confidence scoring for git-history-based analysis |
|
build
Package build provides the CI/CD optimization analyzer Features: cost analysis, caching optimization, parallelization, flaky test detection
|
Package build provides the CI/CD optimization analyzer Features: cost analysis, caching optimization, parallelization, flaky test detection |
|
code-ownership
Package codeownership provides code ownership analysis with benchmark tiers
|
Package codeownership provides code ownership analysis with benchmark tiers |
|
code-packages
Package codepackages implements the consolidated code packages analyzer This analyzer generates SBOMs and performs comprehensive package analysis.
|
Package codepackages implements the consolidated code packages analyzer This analyzer generates SBOMs and performs comprehensive package analysis. |
|
code-quality
Package codequality provides the consolidated code quality analyzer
|
Package codequality provides the consolidated code quality analyzer |
|
code-security
Package codesecurity provides the consolidated code security analyzer
|
Package codesecurity provides the consolidated code security analyzer |
|
common
Package common provides shared utilities for analyzer implementations
|
Package common provides shared utilities for analyzer implementations |
|
developer-experience
Package developerexperience provides the consolidated developer experience analyzer Features: onboarding, tooling, workflow
|
Package developerexperience provides the consolidated developer experience analyzer Features: onboarding, tooling, workflow |
|
devops
Package devops provides the consolidated DevOps and CI/CD security analyzer Renamed from infra - now includes all infrastructure, CI/CD, and GitHub Actions security
|
Package devops provides the consolidated DevOps and CI/CD security analyzer Renamed from infra - now includes all infrastructure, CI/CD, and GitHub Actions security |
|
infra-config
Package infraconfig provides the infrastructure configuration analyzer
|
Package infraconfig provides the infrastructure configuration analyzer |
|
repo-governance
Package repogovernance provides the repository governance analyzer
|
Package repogovernance provides the repository governance analyzer |
|
technology-identification
Package techid provides the consolidated technology identification analyzer Includes AI/ML security and ML-BOM generation
|
Package techid provides the consolidated technology identification analyzer Includes AI/ML security and ML-BOM generation |
|
tool-config
Package toolconfig provides the developer tool configuration analyzer
|
Package toolconfig provides the developer tool configuration analyzer |
|
Package api provides the HTTP API layer for Zero
|
Package api provides the HTTP API layer for Zero |
|
agent
Package agent provides agent chat functionality for the Zero API
|
Package agent provides agent chat functionality for the Zero API |
|
banter
Package banter provides idle agent conversation generation for full personality mode
|
Package banter provides idle agent conversation generation for full personality mode |
|
handlers
Package handlers provides HTTP request handlers for the Zero API
|
Package handlers provides HTTP request handlers for the Zero API |
|
jobs
Package jobs provides background job queue functionality for async operations
|
Package jobs provides background job queue functionality for async operations |
|
middleware
Package middleware provides HTTP middleware for the Zero API
|
Package middleware provides HTTP middleware for the Zero API |
|
shared
Package shared provides common agent data for the API layer
|
Package shared provides common agent data for the API layer |
|
types
Package types provides API type definitions for Zero
|
Package types provides API type definitions for Zero |
|
ws
Package ws provides WebSocket functionality for real-time updates
|
Package ws provides WebSocket functionality for real-time updates |
|
Package auth provides authentication and authorization functionality for Zero IDP.
|
Package auth provides authentication and authorization functionality for Zero IDP. |
|
Package catalog provides types and operations for the service catalog.
|
Package catalog provides types and operations for the service catalog. |
|
core
|
|
|
config
Package config handles Zero configuration loading and management
|
Package config handles Zero configuration loading and management |
|
credentials
Package credentials manages API keys and tokens for Zero
|
Package credentials manages API keys and tokens for Zero |
|
cyclonedx
Package cyclonedx provides CycloneDX BOM generation and export capabilities.
|
Package cyclonedx provides CycloneDX BOM generation and export capabilities. |
|
errors
Package errors provides sentinel errors and error utilities for Zero.
|
Package errors provides sentinel errors and error utilities for Zero. |
|
feedback
Package feedback provides types and storage for analyst feedback on findings
|
Package feedback provides types and storage for analyst feedback on findings |
|
feeds
Package feeds provides external feed synchronization for security data
|
Package feeds provides external feed synchronization for security data |
|
findings
Package findings provides standardized finding types for all scanners
|
Package findings provides standardized finding types for all scanners |
|
github
Package github provides GitHub API interactions
|
Package github provides GitHub API interactions |
|
languages
Package languages provides programming language detection utilities using go-enry (a Go port of GitHub Linguist)
|
Package languages provides programming language detection utilities using go-enry (a Go port of GitHub Linguist) |
|
liveapi
Package liveapi provides clients for live API queries (e.g., OSV)
|
Package liveapi provides clients for live API queries (e.g., OSV) |
|
logging
Package logging provides structured logging for Zero using slog.
|
Package logging provides structured logging for Zero using slog. |
|
rag
Package rag provides utilities for loading RAG (Retrieval-Augmented Generation) knowledge files that configure scanner behavior dynamically.
|
Package rag provides utilities for loading RAG (Retrieval-Augmented Generation) knowledge files that configure scanner behavior dynamically. |
|
rules
Package rules provides Semgrep rule generation and management
|
Package rules provides Semgrep rule generation and management |
|
sarif
Package sarif provides SARIF (Static Analysis Results Interchange Format) export SARIF is a standard format for the output of static analysis tools.
|
Package sarif provides SARIF (Static Analysis Results Interchange Format) export SARIF is a standard format for the output of static analysis tools. |
|
scoring
Package scoring provides standardized score calculation utilities
|
Package scoring provides standardized score calculation utilities |
|
status
Package status implements the status command for showing hydrated projects
|
Package status implements the status command for showing hydrated projects |
|
suppression
Package suppression provides filtering of findings based on user feedback and context
|
Package suppression provides filtering of findings based on user feedback and context |
|
terminal
Package terminal provides colored output and progress display
|
Package terminal provides colored output and progress display |
|
Package mcp provides an MCP server for Zero analysis data
|
Package mcp provides an MCP server for Zero analysis data |
|
reports
|
|
|
markdown
Package markdown generates markdown reports from analysis data
|
Package markdown generates markdown reports from analysis data |
|
Package storage provides database abstraction for Zero's data layer.
|
Package storage provides database abstraction for Zero's data layer. |
|
sqlite
Package sqlite provides a SQLite implementation of the storage.Store interface.
|
Package sqlite provides a SQLite implementation of the storage.Store interface. |
|
workflow
|
|
|
automation
Package automation provides file watching and automated scan triggering
|
Package automation provides file watching and automated scan triggering |
|
freshness
Package freshness provides staleness detection and freshness metadata tracking
|
Package freshness provides staleness detection and freshness metadata tracking |
|
hydrate
Package hydrate implements the hydrate command for cloning and scanning repos
|
Package hydrate implements the hydrate command for cloning and scanning repos |
|
vex
Package vex provides VEX (Vulnerability Exploitability eXchange) document generation.
|
Package vex provides VEX (Vulnerability Exploitability eXchange) document generation. |
Click to show internal directories.
Click to hide internal directories.