Sentinel OS
An independently developed security operations and repository assessment system focused on practical source-code scanning, secrets detection, configuration checks, governance, controlled scan modes, and centralized findings.
Problem addressed
AI-assisted development moves quickly, and it is easy for secrets, weak configuration, or ungoverned changes to slip into a repository. I wanted a practical, controlled way to scan my own repositories and keep findings in one place — with clear operator control over what a scan is allowed to do.
Intended users
Myself as the operator, scanning my own repositories; the design is intended to generalize to small teams that want repository-level checks.
Technologies
- Next.js
- TypeScript
- PostgreSQL
- GitHub workflows
Key capabilities
- 01
Repository scanning with secrets detection and basic static analysis.
- 02
Configuration and dependency checks.
- 03
Controlled scan modes — SAFE, VALIDATE, and ACTIVE — with explicit scan authorization.
- 04
Scan history and a centralized findings dashboard.
- 05
Local operator controls, with GitHub workflow integration as a design goal.
Currently working
Repository scanning, secrets detection, and a findings view in a working prototype state.
Scan-mode structure (SAFE / VALIDATE / ACTIVE) and scan authorization.
Under development
Deeper static analysis and dependency checks.
More complete scan history and reporting.
GitHub workflow integration beyond local operation.
Honest note
Sentinel OS is a practical, independently developed security tool — not a commercial SOC platform. Completed, prototype, and planned capabilities are distinguished above.
Next system
Education Intelligence (SEIP)