Why ShipSec Studio?
- No code required – Build powerful security workflows by connecting components visually. No scripting, no glue code, no maintenance headaches.
- Built for security teams – Pre-built components for subdomain discovery, vulnerability scanning, secret detection, and more. Focus on security, not infrastructure.
- Workflows that don’t fail silently – Automatic retries, resumable executions, and real-time log streaming, giving visibility into every step. Know exactly what’s happening and why.
- Self-hosted and open source – Your data stays on your infrastructure. Run it on a laptop or scale to production with the same codebase.
- Secure by default – Encrypted secrets, isolated container execution, and team-based access controls built in from day one.
Product Tour
Workflow Builder
Visual drag-and-drop editor for building security workflows
Live Execution
Watch workflow execution unfold in real-time with streaming logs
Secrets Management
Secure storage for API keys and credentials
Connections
Integrate with external services and APIs
Get Started
Quickstart
Get up and running in 5 minutes
Installation
Self-host on your own infrastructure
Architecture
Understand the system design
Components
Explore available components
Technology Stack
| Layer | Technologies |
|---|---|
| Frontend | React 19, TypeScript, Vite, Tailwind CSS, Radix UI, ReactFlow, xterm.js |
| Backend | NestJS, TypeScript, Bun runtime, PostgreSQL, Drizzle ORM, Clerk Auth |
| Worker | Node.js, TypeScript, Temporal.io, Docker containers |
| Infrastructure | PostgreSQL, Temporal, MinIO, Redis, Loki, Redpanda (Kafka) |
Need Help?
- Support – [email protected]
- GitHub – github.com/shipsecai/studio