sentrik¶
Governance runtime for AI-generated code. Scan, gate, and trace compliance automatically in CI/CD.
What is sentrik?¶
Teams using Copilot, Cursor, Claude Code, and AI coding agents generate code fast — but compliance doesn't keep up. sentrik enforces standards automatically:
- IEC 62304 for medical device software (FDA/EU MDR)
- OWASP Top 10 for web application security
- SOC2 Trust Services Criteria
- Custom rule packs for your own standards
Install in one command¶
No Python or runtime dependencies needed.
30-second quickstart¶
# Open any project and scan — no setup needed
sentra scan
# Enforce quality gate (exit 1 on failure)
sentra gate
No config files, no wizard. sentrik auto-detects your project and applies sensible defaults.
Key features¶
| Feature | Description |
|---|---|
| Zero Config | Auto-detects project, applies sensible defaults — just scan |
| Rules Engine | Regex, AST, and file-policy rules with auto-fix |
| Standards Packs | Pre-built IEC 62304, OWASP, SOC2 rule sets |
| CI/CD Gate | Block non-compliant PRs in GitHub Actions or Azure Pipelines |
| PR Decoration | Post findings as PR comments on GitHub and Azure DevOps |
| Work Item Traceability | Link findings to Azure DevOps, GitHub Issues, or Jira |
| VS Code / Cursor | Auto-scan on save, inline findings, zero setup |
| Management Dashboard | Web UI for findings, rules, packs, audit log |
| REST API | 25+ endpoints for remote scanning and integration |
| Reports | HTML, JUnit XML, SARIF, CSV output |
Next steps¶
- Installation — npm
- Quickstart tutorial — under 5 minutes
- Configuration —
.sentra/config.yamlreference - Standards Packs — IEC 62304, OWASP, SOC2