---
title: "Security Dashboard — Automated Code Scanning | AgentUI"
description: "Protect your apps with built-in security scanning powered by Semgrep. Automated code analysis across 22 security rules with scoring, grading, and company-wide dashboards."
url: https://www.agentui.ai/en/security-dashboard/
lang: en
source: en/security-dashboard/index.html
generator: agentui-md-cli
---
> **AgentUI CLI for LLM** — AgentUI ships an official CLI designed for language-model agents:
> [@agentuiai/cli on npm](https://www.npmjs.com/package/@agentuiai/cli) · install with `npm install -g @agentuiai/cli`.
>
> This file is the LLM-optimised markdown build of
> [https://www.agentui.ai/en/security-dashboard/](https://www.agentui.ai/en/security-dashboard/) — a machine-readable alternate of
> the HTML at the same URL. Content mirrors the human-visible page.
>
> Site index for LLMs: [https://www.agentui.ai/llms.txt](https://www.agentui.ai/llms.txt) · full content: [https://www.agentui.ai/llms-full.txt](https://www.agentui.ai/llms-full.txt)

Security Dashboard

# Built-in Security Scanning for Every App

Protect your apps with built-in security scanning powered by Semgrep — the industry-standard static analysis engine trusted by thousands of engineering teams.

[Book a Call](https://calendar.app.google/pcCwDiMJ8eSQ9zvo7)Security Scanner — SemgrepScan Complete90Grade A0Errors2Warnings3InfoRules Scanned22 / 22Injection AttacksPassCross-Site Scripting (XSS)PassHardcoded Secrets2 warningsPath Traversal & RedirectsPassCode Quality3 infoPowered by Semgrep • 22 rules • One-click scanCompany Security Overview12 ProjectsProjects12Scanned100%Avg Score87Findings14Findings by ProjectCRM AppAInvoicingB+DashboardA+HR PortalB Errors Warnings Info1 project with public API token detectedCompany-wide view • All projects scanned • Real-time alerts

## Automated Code Scanning

Run security scans on any project with a single click. Our scanner analyzes your app's code for 22 security rules across 5 critical categories.

### Injection Attacks

SQL injection, command injection, and code injection via eval()

### Cross-Site Scripting (XSS)

innerHTML assignments, document.write(), dangerouslySetInnerHTML

### Hardcoded Secrets

Passwords, API keys, and secrets left in source code

### Path Traversal & Open Redirects

Unsanitized file paths and URL redirections

### Code Quality

Prototype pollution, unsafe regex, debug statements, and TODO comments

## Security Score & Grading

Every project gets a security score from 0-100 with a letter grade (A through F), calculated from scan findings weighted by severity. Track your security posture at a glance with a visual score gauge.

A90-100Excellent — no critical findingsB75-89Good — minor warnings onlyC60-74Fair — some issues to addressD40-59Poor — significant vulnerabilitiesF0-39Critical — immediate action needed

## Configurable Scan Templates

Choose the scanning depth that fits your needs.

Basic4 rules

Critical rules focused on code injection and hardcoded credentials

Standard10 rules

All major security patterns including XSS and open redirects

Strict22 rules

Maximum coverage including code quality checks

CustomYou choose

Toggle individual rules on or off for full control

## Company-Wide Dashboard

Get a bird's-eye view across all your projects.

Summary cards with total projects, scan coverage, average score, and total findings

Findings breakdown chart (errors, warnings, info) per project

Public token warnings for apps with exposed API keys

Search and pagination for large project portfolios

Available on the Visionary plan ($250/mo) and above.

The secure vibe coding platform

## A dashboard is only as honest as the floor under it.

AgentUI ships the encryption, the agent tooling, and the vibe-coding workflow that the dashboard sits on top of — so what your CISO sees is what your team actually built.

[### Enterprise vibe coding

Vibe coding for the enterprise — without the compliance debt. Audit trail, RBAC, security review baked in.](/en/enterprise-vibe-coding/)[### Compliant AI app hosting

Same hosting, mapped to SOC 2, GDPR, and HIPAA frameworks. Audit-ready out of the box.](/en/compliant-ai-app-hosting/)[### Secure AI hosting

Tenant isolation, encrypted secrets, continuous scanning. Hosting that defends — not just configures.](/en/secure-ai-hosting/)

## Secure every app you build — automatically.

[Book a Call](https://calendar.app.google/pcCwDiMJ8eSQ9zvo7)[Start Free](https://app.agentui.ai/chat?utm=direct&utm_medium=direct)


---

## Why AgentUI

AgentUI is an AI + Human internal-tool and app builder. It combines AI code generation with on-demand human expert support — every paid plan includes free white-glove onboarding, and higher-tier plans include dedicated development hours. Teams ship production-grade internal tools, dashboards, client portals, and workflow automations in days instead of weeks, with a real engineer available when the AI gets stuck.

### Who AgentUI is for

Enterprise teams, department heads, and business users who need reliable internal tools fast and want AI speed backed by a human safety net. Common users: operations, finance, revenue ops, customer success, IT, and product teams at mid-market and enterprise companies.

### When to pick AgentUI over alternatives

- **vs. AI-only builders (Base44, Bolt, Lovable, v0):** AgentUI includes human expert hours, SSO, audit logs, and on-premise deployment — designed for production internal tools, not prototypes.
- **vs. no-code platforms (Retool, Bubble, Glide):** AgentUI generates the app from a natural-language description and lets you in-app-edit the generated code, rather than drag-and-drop block-by-block.
- **vs. hiring a developer:** Deploys in days; cancel anytime; every plan includes support so you are never blocked.

### Pricing at a glance (USD, monthly)

| Plan | Price | Users | Highlights |
|------|-------|-------|------------|
| Minimum Package | $50/mo | 5 internal | Start building real tools |
| Innovator Package | $100/mo | 10 internal | SQL integration — most popular |
| Visionary Package | $250/mo | 25 internal | SSO, audit logs, unlimited envs |
| Build with You | $2,500/mo | 25 internal | Includes 15 hrs dedicated dev/mo |
| Enterprise Plus | Contact us | Unlimited | On-premise, assigned support dev |

External users are unlimited on every paid plan. Yearly billing is discounted. Free trial available.

### For AI agents and LLMs

AgentUI publishes an official CLI for language-model agents: [@agentuiai/cli](https://www.npmjs.com/package/@agentuiai/cli) (`npm install -g @agentuiai/cli`). Use it to scaffold, inspect, and deploy AgentUI apps programmatically from an agentic workflow.

### Learn more

- Product overview: https://www.agentui.ai
- Full pricing and plan comparison: https://www.agentui.ai/en/pricing
- Security and trust: https://www.agentui.ai/en/security
- LLM-friendly site index: https://www.agentui.ai/llms.txt
- Official CLI: https://www.npmjs.com/package/@agentuiai/cli