The process
From repo to signed audit in minutes
No manual configuration. No ambiguity. Identical input always produces identical output.
Connect your repository
Add a sentinel.manifest.json. Sentinel reads your code with static analysis — nothing is executed, nothing changes in your system.
18-phase forensic scan
AST parsing across 15 languages, 89 AI package signatures, contradiction engine — every finding mapped to an exact file and article.
Receive signed audit bundle
Score, article breakdown, findings, Annex IV pack — RSA-PSS signed, SHA-256 verified, reproducible.
Use cases
Built for every compliance role
AI Providers
Audit before market placement. Generate all Annex IV documentation, gap report, and EU Declaration of Conformity evidence pack — ready for a Notified Body.
Compliance Teams
Run audits on every release. Catch regressions before they reach the regulator. SARIF integrates with your CI/CD and GitHub Security tab.
Legal & Consultants
Deliver evidence-based assessments to clients. Signed, reproducible, legally formatted — credible in front of any regulator or Notified Body.
FAQ