sentrik

Loading metrics...

Dependency Vulnerabilities

Click to scan dependencies for known vulnerabilities

View details →

Dependency Vulnerabilities

Click "Scan Dependencies" to check for known vulnerabilities

Governance Profile

Human Review Gates

Auto-Patch & Gate

Findings

All Critical 0 High 0 Medium 0 Low 0 Info 0 Hide Documentation 0

Severity ▲	Rule ▲	File ▲	Message

Reports

Standards Packs

Active Rules

All Critical 0 High 0 Medium 0 Low 0 Info 0

ID ▲	Name ▲	Type ▲	Severity ▲

Work Items

ID	Title	State	Rule	Findings
Select the Work Items tab to load data.

Integration

Connection Status

Loading connection status...

Configure Provider

Platform

Organization

Project

Team (optional)

Iteration (optional)

Work Item Types (select which types to pull from sprint)

Test connection to load available types

Auth: use OAuth above, or set AZURE_DEVOPS_PAT env var.

Owner

Repository

Label (optional)

Milestone (optional)

Auth: use OAuth above, or set GITHUB_TOKEN env var.

Base URL

Project Key

Issue Types (select which types to pull from active sprint)

Story Bug Task Epic Sub-task Requirement Change Request

JQL Override (overrides type selection above)

Auth: use OAuth above, or set JIRA_USER + JIRA_TOKEN env vars.

Agent Action Audit Log

Loading audit log...

Approval Requests

When async_approval is enabled and the gate fails, an approval request is created instead of immediately blocking. A security lead can review and approve (override the gate and optionally create work items to track findings) or reject (block the merge).

Loading approvals...

Quality Score

—

Overall Quality

No data yet

Score History

Project Profile

Design Decisions

Developer Expertise

Threat Model

Git range

File / Folder

Diff only

All Critical 0 High 0 Medium 0 Low 0

Compliance Attestation

🔒

No attestation generated yet.

Run sentrik attest to generate a signed compliance attestation.

Configuration

🛡

Scanner: Built-in Rules Engine

Your code is analyzed using deterministic pattern matching and AST checks from your enabled standards packs. External scanner integration (SARIF import, AI-powered analysis) is available via the config file.

AI Integration

Configure an LLM to enable "Fix with AI" chat in findings and vulnerability pages. Your API key is stored as an environment variable — it is never written to config files.

LLM Provider

Model (optional)

Show raw JSON

Scan History

Total Scans

Avg Findings

Pass Rate

Avg Duration

Date	Command	Findings	Critical	High	Compliance	Gate	Duration
Loading history...

Compliance Evidence Map

Shows where your code satisfies compliance requirements — not just violations, but proof of compliance.

Rule	Clause	Requirement	Status	Evidence
Loading evidence map...

License Compliance

All High 0 Medium 0 Low 0 None 0

Package	Version	License	Risk	Copyleft
Click "Scan Licenses" to analyze dependency licenses

Welcome to SENTRIK

Findings by Severity

Findings Trend

Top Files by Finding Count

Dependency Vulnerabilities

Dependency Vulnerabilities

Governance Profile

Human Review Gates

Auto-Patch & Gate

Findings

Reports

Dependencies

Standards Packs

Active Rules

Work Items

Integration

Connection Status

Configure Provider

Agent Action Audit Log

Approval Requests

Quality Score

Score History

Project Profile

Architectural Summary

Languages

Frameworks & Libraries

Architecture Patterns

Compliance Signals

Coding Conventions

Core Dependencies

Module Map

Architecture Decision Records (ADRs)

Suggested Sentrik Packs

AI Recommendations

Accumulated Project Context

Design Decisions

Developer Expertise

Threat Model

Compliance Attestation

Configuration

AI Integration

Scan History

Total Scans

Avg Findings

Pass Rate

Avg Duration

Compliance Score Trend

Compliance Evidence Map

License Compliance

Total Packages

Copyleft

High Risk

Permissive

Keyboard Shortcuts

Navigation

Actions

Resources

Acknowledge Decision