Skip to main content
Gecko SecurityGecko Security

Find real, exploitable vulnerabilities in your code. Fix what matters.

Get started

Connect a repository and review real findings in minutes.

Quick start

Connect, scan, triage, fix.

How Gecko works

The agent pipeline, end to end.

Connect your code

GitHub, GitLab, or a public URL.

Understand & fix findings

What Gecko reports, and how to drive it to zero.

Findings explained

Confidence, severity, call chains, and the status lifecycle.

Deep vs PR scans

Thorough deep scans, multi-repo, and fast PR checks.

Triage & remediation

Prioritize, fix the root cause, and verify with a rescan.

Auto-fix PRs

Ship Gecko’s patch as a pull request in one click.

Connect your code

Bring source control in, including self-managed GitLab behind a firewall.

Connect GitHub

GitHub App for GitHub.com, plus GitHub Enterprise Server.

Connect GitLab

GitLab.com, self-managed, and GitLab Dedicated.

Network & IP allowlist

The IPs to allow for IP-restricted instances.

Pull request checks

Scan every PR and block risky merges.

Operate & extend

Run Gecko across your org and wire it into your stack.

Deployment models

Cloud and hybrid, and what each means for network access.

Teams & permissions

Roles and the permission matrix.

SSO & SCIM

Okta SAML and automated provisioning.

Integrations

Jira, Linear, Slack, ClickUp, and Shortcut.

API reference

Automate scans and pull findings with the v1 API.

Billing & plans

Plans, usage, and feature availability.