About
Saïd — founder
Hi, I'm Saïd. auditdude is a one-person business, and I build and run every part of it. No team to hide behind, no support queue that routes you to someone who's never seen the code. When you email, you reach me.
I've spent ten years building Rails applications and three years on the other side of the table doing offensive security and penetration testing. I kept watching the same thing happen: solo founders and small teams shipping fast, with no realistic way to get their code looked at for security. The good tools were priced and built for enterprises. So I built the scanner I wished I'd had.
auditdude connects to your GitHub repos, reads your source the way an attacker would, and reports the issues worth fixing, with enough context to fix them. It runs on every push, not once a year before an audit. If a finding wouldn't realistically get you breached, you won't see it.
This is the part I won't compromise on. To analyze your code, auditdude sends it to Anthropic's Claude API and nowhere else. Anthropic's API terms mean it's never used to train any model, and I never share it with anyone. I only request read access, and you can revoke it from GitHub in one click. I picked Claude because catching real bugs takes a frontier model.
I'm not chasing an acquisition or an exit. auditdude is a sustainable business I run myself, funded by the people who pay for it rather than by selling data or attention. I plan to still be here maintaining it years from now.
Questions, feedback, or just want to know whether auditdude fits what you're building? Email me directly at contact@auditdude.com. I read everything.