docsUse CasesUse CodeAudits With Your Private Account

Use CodeAudits With Your Private Account

Here’s the suggested flow:

  1. Your GitHub repository has a GitHub Action that submits code to CodeAudits.ai.
  2. CodeAudits uses your private API keys (e.g., Google Gemini, OpenAI GPT, Anthropic Claude, etc.).
  3. Your code and audits are available only to you behind SSO (Google, GitHub, or Microsoft Entra ID).

Workflow Setup

  • Go to CodeAudits.ai -> Your Account and sign in with GitHub or any other SSO provider.
  • In the Settings screen, copy your API Token.

/images/docs/your-api-token.png

  • In your GitHub repository, create a workflow in .github/workflows/:
name: Push codebase for LLM audits (private)
 
on:
  workflow_dispatch:
 
jobs:
  parse-repository:
    runs-on: ubuntu-latest
    name: Parse this repository for CodeAudits
    steps:
      - name: Checkout
        uses: actions/checkout@v4
 
      - name: Parse Repository
        uses: frogermcs/codeaudits-parse@v1.1.0
        id: parse
        with:
          style: markdown
          compress: false
          push-to-codeaudits: true
          codeaudits-api-key: ${{ secrets.CODE_AUDITS_API_KEY }}
      
      - name: Upload Prompt File as Artifact
        uses: actions/upload-artifact@v4
        with:
          name: parsed-repo.txt
          path: parsed-repo.txt

You can find the workflow file in the CodeAudits repository: llm_audit_private.yml

This workflow uses the frogermcs/codeaudits-parse action to parse your codebase and send it to your private account on CodeAudits.ai.

  • In your GitHub repository settings, go to Secrets and variables -> Actions and set CODE_AUDITS_API_KEY to the API token you copied from CodeAudits.ai.
  • After the workflow runs successfully, you can see your audits at https://codeaudits.ai/account.

LLM API Key Setup

  • Go to your account on CodeAudits.ai: https://codeaudits.ai/account
  • In the Settings screen, you can add API keys to different LLM services.
  • Select the default one that should be used to generate code audits.

/images/docs/api-key-manager.png

When you open a specific audit, the default LLM you selected will be used to generate it.

/images/docs/generated-audit.png

Getting Your Free API Key for LLM

At the time of writing, most LLM APIs are paid (usually a few cents per request). However, you can get Google’s Gemini API for free.

The Gemini API “free tier” is available with lower rate limits for testing purposes. Data sent to Google with this API key is used to improve their products.

To get your free-tier Gemini API key, visit: https://aistudio.google.com/.

Quick Start GuidePrivate Instance of CodeAudits
MIT 2025 © Nextra.