> ## Documentation Index
> Fetch the complete documentation index at: https://docs.krait.io/llms.txt
> Use this file to discover all available pages before exploring further.

# Code Scanning

> Continuously scan your source code repositories to identify security vulnerabilities, misconfigurations, and risky patterns, helping your team detect issues early and maintain a secure development lifecycle. 

<Steps>
  <Step title="Connect Your VCS">
    Select your Version Control System of choice.

    <CardGroup cols={2}>
      <Card title="GitHub" icon="github" href="/integrations/code/github" />

      <Card title="GitLab" icon="gitlab" href="/integrations/code/gitlab" />
    </CardGroup>
  </Step>

  <Step title="Sync Repositories">
    After connecting your VCS, **sync** the repositories you want to scan. The number of repositories you can add will depend on the type of workspace you have.

    <Frame>
      <img src="https://mintcdn.com/krait/9ioPUQVgYHbGs9dJ/scanning/images/sync_repositories.png?fit=max&auto=format&n=9ioPUQVgYHbGs9dJ&q=85&s=22b762e7d85782ba99d05d377dcd5cc6" alt="Sync repositories interface" title="sync repositories" style={{ width:"100%" }} width="1568" height="1702" data-path="scanning/images/sync_repositories.png" />
    </Frame>
  </Step>

  <Step title="Start Scanning">
    Initiate a scan on your selected repositories. As soon as you initiate, your repositories will start to be scanned for security vulnerabilities. This may take a few minutes depending on the size of your codebase.

    <Frame>
      <img src="https://mintcdn.com/krait/9ioPUQVgYHbGs9dJ/scanning/images/scan_repository.png?fit=max&auto=format&n=9ioPUQVgYHbGs9dJ&q=85&s=e091d7743a1542ef545294c022a86db0" alt="Start scanning button" width="1986" height="1210" data-path="scanning/images/scan_repository.png" />
    </Frame>
  </Step>

  <Step title="View Findings">
    Once the scan completes, a list of all findings with their information will appear on the page.

    <Frame>
      <img src="https://mintcdn.com/krait/9ioPUQVgYHbGs9dJ/scanning/images/findings_repo.png?fit=max&auto=format&n=9ioPUQVgYHbGs9dJ&q=85&s=7f338df6d4646a2b47b36a8f52493ee9" alt="Security findings dashboard" width="1930" height="1182" data-path="scanning/images/findings_repo.png" />
    </Frame>
  </Step>

  <Step title="Analyze Findings">
    By clicking on any finding, you will see its detail. You will find a short explanation, the code snippet, catagory, severity, CVSS score, references. If a issue is present multiple times, Krait will only show one finding and group all the instances together. You can also create a ticket from the findings page.

    <Frame>
      <img src="https://mintcdn.com/krait/9ioPUQVgYHbGs9dJ/scanning/images/code-findings.png?fit=max&auto=format&n=9ioPUQVgYHbGs9dJ&q=85&s=0558ecb93a93000f4f34bbcb7e1d9a9e" alt="Security findings dashboard" width="2168" height="1344" data-path="scanning/images/code-findings.png" />
    </Frame>
  </Step>
</Steps>

Code scanning in Krait makes it easy to continuously monitor your repositories for security risks. By connecting your VCS and reviewing actionable findings, teams can quickly identify, prioritize, and remediate vulnerabilities before they reach production.
