Every week, indie developers ship code without ever running a security scanner. Not because they don't care — because enterprise tools are too expensive, too complex, or too noisy.
So I built Debuggix. 9 engines, one scan, AI-filtered results. Free for public repos.
Here are 5 projects that recently passed all 9 engines with zero real issues:
🛡️ DNSpect by @cortega26
A local-first benchmarking framework for encrypted DNS protocols (DoT/DoH).
Result: 0 findings. Completely clean.
🛡️ Zephyr by @Juwan-Hwang
A beautiful proxy client with machine-bound encryption and sandboxed QuickJS engines.
Result: 1 dependency CVE in glib. Core code clean.
🛡️ sysmanage by @bceverly
Infrastructure management platform with 98 raw scanner findings.
Result: All 98 were in Alembic migrations and installer scripts. Zero application issues.
🛡️ bean-whisperer by @zsiddique
Automated IoT coffee-roasting framework.
Result: 1 finding — a harmless false positive. Verified clean.
🛡️ yamlresume by @xiaohanyu
YAML-driven resume builder with Hadolint integration.
Result: 4 findings — all dependency-level. Application code clean.
These projects are now listed on the Debuggix Verified Page. Each one gets a live badge that updates on every scan.
Want your repo featured next week? Scan it free at debuggix.space. If it comes back clean, you'll get a verified badge and a spot in the next leaderboard.
No credit card. No config. Just paste a GitHub URL.
Top comments (0)