From zero to a finished report
Write your sections
Executive summary, scope, and methodology in a rich editor with tables, images, and code.
Add findings
Set the severity, run the built-in CVSS v3.1 calculator, and reuse templates so you never retype a vulnerability.
Pick a template
Your own branded .docx acts as the skeleton, and placeholders, loops, and conditionals fill it in.
Export
One click produces a finished, formatted DOCX with colored severities and all.
Everything in one place
Rich editor
A TipTap editor for sections and finding fields, covering formatting, tables, code blocks, and pasted images, all stored locally.
Findings + CVSS
Structured findings with severity, a built-in CVSS v3.1 calculator, custom fields, and drag-to-reorder.
Finding templates
Build a library of reusable vulnerabilities and drop them into any report.
DOCX export
Bring your own .docx template and export a pixel-perfect, branded report, with placeholders, loops, conditionals, and colored severity badges.
AI draftingPro
Draft or polish any field with Ollama, OpenAI, Claude, or Gemini, using your own key and model on your own machine.
Team collaborationTeam
Roles, report assignment, threaded comments, an activity feed, and live presence with field locking.
Self-hosted
Runs as one Docker stack on Postgres, on your own infrastructure. The only outbound call is license activation.
Yours to shape
Customize severity colors, statuses, finding fields, and metadata to match how your team works.
Free, Pro, and Team
Start free forever. Add AI on Pro, or unlock multi-user collaboration on Team. The tier is baked into the Docker image you run.
Run it in five minutes
Clone the repo, set two secrets, and run docker compose up. You get a demo report and an example template out of the box.