title: Documentation layout: "layouts/doc" permalink: "/"

Curio

Welcome to the Curio documentation. Curio is a static code analysis tool (SAST) dedicated to data security. It scans your source code to discover sensitive data flows (PHI, PII, PD as well as Data stores, internal and external APIs) and data security risks (leaks, missing encryption, third-party sharing etc).

Getting started

New to Curio? Check out the quickstart to scan your first project.

Ready to dive in? Curio's reports are your path to analyzing data security risks in your application. Check the supported languages, then view the command reference to configure Curio to your needs.

Explanations

Explanations dive into the rational behind Curio and explain some of its heavier concepts.

• How Curio discovers and classifies data
• Curio's report types

Reference

Reference documents are where you'll find detailed information about each command, as well as support charges for languages, rules, datatypes, and more.

• Built-in Rules
• Supported Data Types
• Commands
• Supported Languages
• Configuration

Contributing

We'd love to see the impact you can bring to Curio. Our contributing documentation will help get you started, whether you want to dive deep into the code or simply fix a typo.

• Get started contributing to Curio
• Set up Curio locally to contribute code
• Help improve and apply fixes to the documentation
• Add new recipes to Curio's database