Astra is a comprehensive tool designed to build, scan, and fix repository dependencies with a focus on security and efficiency. It offers both a desktop application built with Electron and a web application powered by Vite and React. Astra provides OSV vulnerability scanning, rich visual analytics, and optional AI-assisted fixes to enhance code quality and security.

Key Features

• Quick repository onboarding with auto-manifest discovery and multi-ecosystem scanning (npm, pip, etc.).

• Privacy-friendly local scanning, querying only dependency metadata against OSV.

• OSV-powered insights with severity normalization and detailed per-dependency information.

• Visual analytics including overview, statistics, and treemap-ready data for risk assessment.

• Real-time Fix Console using Socket.IO for streaming steps, commands, warnings, and errors.

• AI-assisted code fixes via Gemini CLI with one-click application and automatic rescan.

• Robust authentication with Email OTP and Google OAuth.

• Cross-platform support for Windows, macOS, and Linux.

The backend is built with Node.js, Express, and MongoDB, while the frontend leverages React, TypeScript, and Tailwind CSS. Astra also supports multi-repo management with search, filters, pagination, and rescans, making it a versatile tool for developers and teams.