xor-hardener
GitHub App
xor-hardener
GitHub App
XOR-Hardener GitHub App
CVE-free repos, audit-ready in minutes, maintained for you.
What it does
| Feature | What you get | Why it matters |
|---|---|---|
| Automated CVE patching | Autopatches and backports fixes across branches | Shrinks security backlog and breach window to near-zero |
| Inline PR Suggestions | Suggested code + policy diff on every review | Zero extra cycles, faster merges |
| Deep dependency malware detection & trust verification | Crawls + Blocks poisoned or hijacked OSS libs | Keeps Supply Chain attackers out of prod |
| GitHub Action lock-down | Audits & patches exploitable GitHub Workflows + Actions | Blocks CI/CD lateral moves |
| Deep spec & compliance search | NIST, CRA, AI-Act, OpenSSF baseline | Proof for auditors, no spreadsheet scramble |
| Noise-free risk scoring | Filters false hits, tags exploitable vulnerabilites | 5× fewer alerts to chase |
| SAST hardening | Secure & quality gates on every commit | Ships clean code, first time |
Get started free - 5 PR reviews + 10 issues on us
Install in 2 minutes
- Go to github.com/apps/xor-hardener
- Click Install → select repos → Authorize
- It just works.
XOR Cores
Need bespoke checks for a spec, law, or model card?
Get a custom Core and let XOR reason across your whole org.
Email contact@xor.tech - Get CVE-free repos.
Developer
xor-hardener is provided by a third-party and is governed by separate terms of service, privacy policy, and support documentation.
Report abuse