← Celara

SecurityKit

Automated security for node operators

Scan your blockchain nodes for security misconfigurations via JSON-RPC. No SSH, no agents. 8 checks covering unlocked accounts, exposed admin APIs, peer connectivity, and sync status. Markdown reports for compliance. JSON output for CI/CD.

Read the DocsView Source
$ pip install securitykit

See it in action

SecurityKit scanning a node for vulnerabilities
8
Security Checks
21
Tests
3
Output Formats
0
Setup Required

Features

Zero Setup

No SSH keys, no agents, no access tokens. Just point at an RPC URL and scan.

Critical Checks

Unlocked accounts (#1 cause of fund loss), admin API exposure, debug API exposure.

Audit Reports

Generate markdown reports with findings table and remediation steps. Attach to SOC2 evidence.

CI/CD Ready

JSON output + exit code 1 on failures. Use as a deployment gate in your pipeline.

Extensible

Add custom checks with a simple function signature: (rpc_url) → Finding. Auto-picked up by CLI.

Chain ID Verification

Catches testnet/mainnet misconfigurations. Maps to known networks (ETH=1, Polygon=137, etc).

Get started in 30 seconds

$ pip install securitykit
Documentation →GitHub →