bearer/bearer repository overview

⁠What is Bearer?

Bearer is a static application security testing (SAST) tool that scans your source code and analyzes your data flows to discover, filter and prioritize security risks and vulnerabilities leading to sensitive data exposures (PII, PHI, PD).

You can learn more about Bearer:

• By viewing the source on GitHub⁠.
• Getting started with the documentation⁠.
• Opening an issue⁠ or joining our discord community⁠.

⁠Use Bearer to scan a project for data security risks

To use the docker image to scan a local project for data security risks and vulnerabilities, run the command below. Replace /path/to/repo with the path to your project.

docker run --rm -v /path/to/repo:/tmp/scan bearer/bearer:latest-amd64 scan /tmp/scan

⁠License

Bearer code is licensed under the terms of the Elastic License 2.0 (ELv2)⁠, which means you can use it freely inside your organization to protect your applications without any commercial requirements. You are not allowed to provide Curio to third parties as a hosted or managed service without the explicit approval of Bearer Inc.