WarDek is a complete compliance suite that combines an OWASP vulnerability scanner with NIS2, AI Act and GDPR compliance modules, specially designed for European SMEs.

Is my company subject to NIS2?

The NIS2 directive applies to essential and important entities in sectors such as energy, healthcare, transport, digital, etc. Use our free simulator to check.

How should I use WarDek reports in an audit?

WarDek reports provide a practical working base for your team, auditor, or compliance preparation. They are not an official certification or legal opinion.

How long does a scan take?

A complete OWASP scan typically takes between 2 and 5 minutes depending on the complexity of your website.

Absolutely. We never store your credentials. Reports are encrypted and you can delete them at any time. We are hosted in France.

Can I try before I buy?

Yes! The Free plan lets you test WarDek with 3 scans per month, no credit card required.

CLI & SDK

Run security scans from your terminal. No installation required.

INSTALLATION

No global install needed. Run directly with npx:

npx wardek scan https://example.com

Or install globally for repeated use:

npm install -g wardek

API KEY CONFIGURATION

Set your API key as an environment variable. The CLI reads from WARDEK_API_KEY automatically.

# Set for current session
export WARDEK_API_KEY="ssk_live_your_api_key_here"

# Or pass inline
WARDEK_API_KEY="ssk_live_..." npx wardek scan https://example.com

# Or add to .env
echo 'WARDEK_API_KEY=ssk_live_...' >> .env

Without an API key, scans run in anonymous mode with reduced capabilities (no history, no export).

USAGE

Basic scan

npx wardek scan https://example.com

# Output:
# WARDEK SECURITY SCAN
# Target: https://example.com
# Score:  87/100 [B+]
# ─────────────────────
# Headers     ██████████░░  82%
# SSL         ████████████  100%
# Cookies     ████████░░░░  67%
# CORS        ████████████  100%
# ...

View scan history

npx wardek scans --limit 10

Export results

# JSON export
npx wardek export <scan-id> --format json > report.json

# YAML export
npx wardek export <scan-id> --format yaml > report.yaml

Fail on threshold (CI/CD)

# Exit code 1 if score < 75
npx wardek scan https://example.com --min-score 75

# Fail on any critical finding
npx wardek scan https://example.com --fail-on-critical

CLI OPTIONS

Flag	Description	Default
`--min-score <n>`	Fail if scan score is below n	`none`
`--fail-on-critical`	Exit 1 on critical findings	`false`
`--format <fmt>`	Output format: text, json, yaml	`text`
`--timeout <ms>`	Scan timeout in milliseconds	`60000`
`--depth <n>`	Crawl depth	`2`
`--no-color`	Disable colored output	`false`
`--quiet`	Minimal output (score only)	`false`

TYPESCRIPT SDK

COMING SOON

A typed client library for seamless integration into Node.js and TypeScript projects. Subscribe to the changelog for release announcements.

Preview

import { WarDek } from '@wardek/sdk';

const client = new WarDek({
  apiKey: process.env.WARDEK_API_KEY!,
});

// Launch a scan
const scan = await client.scan('https://myapp.com');
logger.info(scan.score);  // 87
logger.info(scan.grade);  // "B+"

// List recent scans
const { scans } = await client.listScans({ limit: 5 });

// Export results
const json = await client.export(scan.id, 'json');
const yaml = await client.export(scan.id, 'yaml');

// CI/CD helper
const passed = scan.score >= 75 && !scan.hasCritical;
process.exit(passed ? 0 : 1);

The SDK will be published on npm as @wardek/sdk. It will include full TypeScript types, automatic retry logic, and streaming support for real-time scan progress.