This product was not featured by Product Hunt yet. It will not be visible on their landing page and won't be ranked (cannot win product of the day regardless of upvotes).
Contract-Guard
Free and local code, config, dependency and security scanner
ContractGuard is a local first VS Code extension that finds security and reliability issues in code, configs, queries, Dockerfiles, and dependency files directly inside the editor. It provides inline diagnostics, a dedicated findings explorer, incremental rescans, severity filtering, SARIF and JSON export, dependency vulnerability checks, secret detection, SQL analysis, regex ReDoS detection, and schema drift analysis without requiring external services.
Built ContractGuard to make security and reliability analysis part of the normal development workflow instead of something developers only encounter during CI failures or external audits.
ContractGuard is a local first VS Code extension that scans code, configuration files, queries, Dockerfiles, and dependency manifests directly inside the editor. It helps identify issues such as hardcoded secrets, dependency vulnerabilities, insecure configurations, schema drift, unsafe SQL patterns, regex ReDoS risks, and PII exposure without requiring external services or cloud based scanning.
The extension includes inline diagnostics, a dedicated findings explorer, incremental rescanning, severity and confidence filtering, configurable analyzers, SARIF and JSON export support, runtime logging, and workspace level scanning designed for larger repositories and day to day development workflows.
A major focus of the project has been balancing useful detection coverage with usability. Security tooling becomes difficult to adopt when it floods developers with noisy findings, breaks editor flow, or behaves like a compliance report generator disguised as a developer tool. ContractGuard tries to stay practical, configurable, and fast enough to use continuously during development.
The current release improves both the VS Code experience and the analyzer infrastructure with better dependency discovery, stronger filtering behavior, timeout handling, preserved findings during rescans, improved packaging reliability, and expanded validation coverage across the extension and analyzer core.
Everything runs locally by default.
Would appreciate feedback from developers working on backend systems, infrastructure, DevOps, platform engineering, or security focused workflows. Interested in hearing where the analysis is useful, where the signal to noise ratio can improve, and what types of checks would be valuable to add next.
No comment highlights available yet. Please check back later!
About Contract-Guard on Product Hunt
“Free and local code, config, dependency and security scanner”
Contract-Guard was submitted on Product Hunt and earned 0 upvotes and 1 comments, placing #122 on the daily leaderboard. ContractGuard is a local first VS Code extension that finds security and reliability issues in code, configs, queries, Dockerfiles, and dependency files directly inside the editor. It provides inline diagnostics, a dedicated findings explorer, incremental rescans, severity filtering, SARIF and JSON export, dependency vulnerability checks, secret detection, SQL analysis, regex ReDoS detection, and schema drift analysis without requiring external services.
Contract-Guard was featured in Open Source (68.4k followers), Developer Tools (512.8k followers) and GitHub (41.2k followers) on Product Hunt. Together, these topics include over 102.3k products, making this a competitive space to launch in.
Who hunted Contract-Guard?
Contract-Guard was hunted by Brahadeesh. A “hunter” on Product Hunt is the community member who submits a product to the platform — uploading the images, the link, and tagging the makers behind it. Hunters typically write the first comment explaining why a product is worth attention, and their followers are notified the moment they post. Around 79% of featured launches on Product Hunt are self-hunted by their makers, but a well-known hunter still acts as a signal of quality to the rest of the community. See the full all-time top hunters leaderboard to discover who is shaping the Product Hunt ecosystem.
Want to see how Contract-Guard stacked up against nearby launches in real time? Check out the live launch dashboard for upvote speed charts, proximity comparisons, and more analytics.
Brahadeesh