How It Works

Five steps from scan to roadmap

The inkode CLI runs locally against your repo. No source code leaves your machine — only file paths, git metadata, and code metrics are uploaded.

1

Install the CLI

One command on macOS or Linux. No accounts, no sign-ups, no API keys for scanning. Prefer to inspect first? Download the binary manually ↗

# macOS and Linux — one line $ curl -fsSL https://inkode.co/install.sh | sh Downloading ik v1.2.0 (darwin/arm64)... Extracting... ik v1.2.0 installed to /usr/local/bin/ik $ ik version ik v1.2.0 (commit a3f8c21, built 2026-04-01T10:00:00Z)
2

Initialize your project

The wizard auto-detects languages, git history, and tech stack. It generates a .ik.yaml config in under 30 seconds.

$ cd my-startup-app && ik init inkode setup Detected: Go, TypeScript · 842 commits · 3 contributors Project name: my-startup-app Email: founder@startup.io Company: Startup Inc Data uploaded: file paths, git metadata, code metrics (not source code) Upload consent: Yes Wrote .ik.yaml Added .ik/ to .gitignore
3

Run the scan

20 checks run concurrently across 5 risk categories. The CLI produces a health score (0-100, grade A-F), renders a Brief locally, and uploads the analysis.

$ ik run inkode · my-startup-app Running 20 checks... Line Count no issues 12ms Test Presence 3 findings 8ms Secret Scanning 14 findings 1.2s Complexity 7 findings 340ms Hotspots no issues 45ms Coupling no issues 38ms Duplication 5 findings 2.1s Dep Audit 23 findings 890ms Import Graph 2 findings 120ms Error Handling 9 findings 280ms Dead Code 4 findings 1.8s TODO Density 6 findings 15ms Magic Numbers 8 findings 95ms Infrastructure no issues 55ms Scripts no issues 30ms Score 34 / 100 grade F security 10 testing 45 maintainability 38 complexity 58 change_risk 85 Report .ik/brief.html Share https://api.inkode.co/r/Xa9kLm2pQr7n
4

Identify risks at a glance

Your Brief gives you a high-level snapshot of your codebase health. It highlights key risks, category scores, and the most problematic files — enough to understand where you stand and start conversations with your CTO, investors, or team, without getting lost in low-level details.

38
Grade F
my-startup-app
14 secrets detected 23 vulnerable dependencies 9 unchecked errors 3 untested directories 5 duplicate code blocks 4 dead code references

Full findings across all 20 checks available in expert review — including coupling matrices, import graph analysis, semantic-duplicate clusters, per-function breakdowns, and more.

5

Expert review and remediation roadmap

Our engineers access the full analysis data through the authenticated API. They review every finding, cross-reference hotspots with complexity, map test gaps against critical paths, and deliver a prioritized remediation plan.

What you get
  • Full 10-section consultant report
  • Prioritized remediation roadmap
  • Effort estimation per issue category
  • 1-hour walkthrough call
Report sections
  • Project overview and sizing metrics
  • All 20 checks with detailed findings
  • Coupling matrix and hotspot cross-ref
  • Test gap map and remediation priority
Ready?

Scan your repo in under a minute

Install the CLI and see your score — no account required for the free scan. Sign up to save your scans and watch the score climb over time.

Get Started Sign up free See Pricing