Auth is present but authorization is missing on sensitive actions.
CodeFix
Find security risks in your AI-built app before users do
CodeFix checks auth, data access, secrets, payment flows, Supabase rules, injection risk, and unsafe admin paths.
main · 84 files mapped · spec coverage compared · no source stored
Repo map84 files
1Ingest
2Map
3Risk
4Proof
5Verdict
Evidence streamLive
PAY
Stripe webhook retries can leave paid users unentitledapp/api/stripe/webhook/route.ts
AUTH
Admin route lacks role guard on write pathapp/admin/projects/[id]/route.ts
SPEC
7 promised flows are not backed by tests or handlersspec coverage compare
SHIP
Missing production env validation before deploylib/systemReadiness.ts
Detailed proof02:41
Launch Readiness62/100
Security RiskHigh
Missing Features7
Production Blockers5
Highest leverage finding
Payment state can drift from app state
Checkout can succeed while booking and entitlement records remain incomplete after webhook retries.
$4,500 to $7,500
app/api/stripe/webhook/route.tssupabase/policies.sqltests/checkout.spec.tsNext: make webhook persistence idempotent, add paid-state recovery, then re-scan.
Security surfaces checked
CodeFix separates symptoms from launch blockers.
Payment completion can drift from database persistence.
Secrets, env files, or admin paths may leak into unsafe places.
What you get
A report that explains the risk and the next safe patch boundary.
Each finding has a plain-English founder summary plus technical evidence with affected files, recommended fixes, acceptance criteria, and regression cautions.
Authentication
Authorization
Data access
Payments
Sample findings
The output is specific enough to scope repair work.
User-owned data is fetched without organization or owner scoping.
Secrets are referenced directly instead of through a validated server-only boundary.
Webhook handling lacks idempotency and signature-verification evidence.
Trust FAQ
Clear access boundaries before code is uploaded.
Do you support private repos?
Yes. CodeFix supports private GitHub repositories and ZIP exports. Repository access is used only to inspect the code needed for launch-readiness analysis.
Do you train models on my code?
No. Customer code is analyzed for the report and is not used for model training. Deeper proof runs through configured live analysis.
Can I delete my project?
Yes. Projects are built around delete-after-report controls and revocable access so uploaded code does not need to remain in the system longer than necessary.
What access do you need?
CodeFix needs source access or a ZIP export, plus any spec, PRD, screenshots, or notes that explain what the app should do and what is currently failing.
Launch-readiness report
Get the proof-to-ship plan before the next rebuild debate
Upload the repo and spec. Get the gaps, risks, repair scope, and repair-budget estimate before the next sprint decision.