Corgea
Automatically find and fix insecure code
363 followers
Automatically find and fix insecure code
363 followers
Corgea is an AI-powered security platform that automatically finds, triages, and fixes insecure code. Sign up today for free to try Corgea.
Interactive
Free Options
Launch Team / Built With
Looks super helpful for devs trying to balance speed and security. How customizable is the tool when it comes to fixing code - can users review and approve changes before they’re applied?
Corgea
@antonyo_demydov thanks! We never merge code automatically and you can definitely customize and approve the changes before their applied.
This is a brilliant idea!
With vibe coding becoming so popular these days, I can see this bringing significant improvements on the security front too.
It really feels like a whole new experience. Congrats on the launch!
Corgea
@kay_arkain thank you! Appreciate the support.
DocsHound
Really nice idea. How long does it take to scan a larger project eg 6k+ source files?
Corgea
@k_piotr Thanks! It's very fast ~1 million lines of code in 20 mins. We don't need to scan all files. Corgea intelligently gathers the right context and skips files that aren't source code or are relevant like migrations. Give it a try and let me know.
Corgea
@german_merlo1 thanks!
Automated security fixes are critical; I like this! 👍
Corgea
@shenjun thanks! Please give it a try and let us know what you think.
Congratulations on the launch of Corgea! This platform addresses a crucial need for developers to balance speed and security. How does Corgea’s AI identify and prioritize vulnerabilities in code, and what is the process for fixing them automatically?
Corgea
@ica_lestari Thanks! Great questions:
1- Corgea uses LLMs as part of it's scanning process which helps it understand meaning and context to identify vulnerabilities, which is why we're able to detect vulnerabilities that were previously undetectable. This is a great article that show that.
2- For auto-fixing, we spent a crazy amount of time building a robust pipeline with LLMs and static analysis to make sure quality was over 90% which is why we were named the leader in this report.