Moat is a new open-source CLI tool by Nuno Maduro that audits the security posture of GitHub accounts, organizations, and repositories. It consolidates GitHub's scattered security settings into a single report, checking for two-factor authentication, branch protection, signed commits, secret scanning, Dependabot alerts, workflow permissions, and more. Each finding includes a risk explanation and a hardening score. Moat is read-only and does not modify settings — it acts as a checklist to help developers identify gaps in their GitHub security configuration. It can be installed via Homebrew or prebuilt binaries and configured with a moat.toml file.
Sort: