# BreachLens

> Self-hosted DevSecOps — 7 scanner tiers, multi-AI auto-fix, cross-tier attack-path correlation, air-gappable for federal.

## Docs

- [REST API](https://docs.breachlens.app/api.md): Drive BreachLens from CI pipelines, scripts, and custom dashboards with bearer-token auth.
- [Authentication](https://docs.breachlens.app/auth.md): Sign-in surfaces, SSO providers, registration modes, and what works for your deployment scenario.
- [CLI](https://docs.breachlens.app/cli.md): BreachLens is API-first today. A full operator CLI is on the roadmap.
- [VS Code extension](https://docs.breachlens.app/ide/vscode.md): Surface BreachLens findings inline as you code, then go squiggly-to-merged-PR in four clicks.
- [BreachLens](https://docs.breachlens.app/index.md): Self-hosted DevSecOps platform — 7 scanner tiers, multi-AI auto-fix, cross-tier attack-path correlation, fully air-gappable.
- [MCP servers](https://docs.breachlens.app/mcp.md): Scan Model Context Protocol servers for prompt injection, tool poisoning, token theft, and other AI-agent attack-surface risks.
- [Quickstart](https://docs.breachlens.app/quickstart.md): From `docker compose up` to a working scan in under 10 minutes.

## Optional

- [Live demo](https://aurora.breachlens.dev)
- [GitHub](https://github.com/breachlens-dev)