documentation
RepoScan
RepoScan is an AI-powered Telegram bot that analyzes GitHub repositories in real-time. Share any GitHub repository URL in your Telegram group and RepoScan will run deep analysis, reporting back with a trust score and detailed findings within seconds.
Built for crypto communities who need to quickly vet project codebases, RepoScan combines AI-driven code analysis and pattern matching to surface red flags before they become expensive mistakes.
Add to Telegram
Use with RickAI Scrapers
When you share a GitHub URL, RepoScan's AI scrapers go to work. They pull the full repository structure, README content, smart contracts, deployment scripts, and configuration files. The scrapers understand code context. They know which files matter most for security analysis and prioritize accordingly.
The scrapers handle rate limiting and large repositories automatically, breaking down complex codebases into digestible chunks for AI analysis. They extract not just the code itself, but metadata like commit history, contributor patterns, and repository age.
Code Search
RepoScan performs deep code analysis across the entire repository, comparing files against millions of other public repositories. The search identifies similar code across the ecosystem, surfacing where the code likely originated and how much of it is original versus copied.
For each file scanned, RepoScan returns a list of similar files found in other repositories along with similarity scores. The built-in diff viewer lets you compare the scanned code against these matches side-by-side, making it easy to spot copy-pasted code, identify the original source, and assess how much unique work actually went into a project.
If a project claims to be original but their codebase is 95% identical to another public repo, you'll see it immediately. This transparency helps communities distinguish between projects with genuine development effort and those that are simply repackaging existing code.
Trust Score
Every scan produces a trust score from 0 to 100. This score combines multiple signals: code originality, repository age, commit history, contributor diversity, and overall development effort. High similarity to other repos lowers the score, while unique code and active development history raise it.
A high score doesn't guarantee safety, but it means the project passed automated checks and shows signs of legitimate development. A low score is a strong warning signal. The score is accompanied by specific findings so you can understand exactly what triggered concerns, rather than blindly trusting a number.
Why It Matters
The crypto space moves fast. New tokens launch every minute, and communities need to make quick decisions about what to trust. Manual code review takes hours and requires expertise most people don't have. RepoScan automates the first layer of due diligence, giving communities instant visibility into whether a project's code raises red flags.
This doesn't replace thorough research, it accelerates it. When someone drops a new token in your group, RepoScan gives everyone the same baseline information within seconds. Legitimate projects benefit from the transparency, and scams get exposed before they can do damage.
Partnerships
RepoScan is available as an embeddable component for trading platforms and crypto tools. Partners can integrate RepoScan directly into their interfaces, giving users instant code analysis without leaving the platform.
Axiom Memescope Integration
RepoScan is integrated into Axiom's memescope, one of the leading Solana trading terminals. When viewing any token, users can access RepoScan analysis directly in the interface. The integration pulls repository URLs from token metadata and displays trust scores, code similarity findings, and red flags inline.
Embeddable Component
Partners embed RepoScan using a simple iframe component. Pass a GitHub repository URL as a query parameter and the component handles everything: fetching the repo, running analysis, displaying results with the trust score, file similarity tree, and AI summary.
REST API
Partners can integrate RepoScan via our REST API. All endpoints are served from back.zauthx402.com. Authenticate with an API key, trigger scans, stream real-time progress via Server-Sent Events, and retrieve detailed results programmatically.
/api/bot/scanTrigger or retrieve scan{
"status": "scanning",
"scanId": "cc5e877a-...",
"message": "Scan started",
"progressUrl": "https://back.zauthx402.com/api/bot/progress/cc5e877a-..."
}/api/bot/progress/:scanIdStream progress (SSE)data: {"type": "files_listed", "filesToScan": 12}
data: {"type": "file_fetching", "current": 1, "total": 12}
data: {"type": "search_completed", "current": 5, "total": 20}
data: {"type": "analyzing"}
data: {"type": "completed", "zauthScore": 25}/api/bot/scanCompleted scan results{
"status": "completed",
"scanId": "cc5e877a-...",
"repoName": "owner/repo",
"repoUrl": "https://github.com/owner/repo",
"tldr": "AI-generated summary...",
"zauthScore": 25,
"diffUrl": "https://zauthx402.com/scan/...",
"iframeUrl": "https://zauthx402.com/iframe?scanId=...",
"metadata": {
"stars": 1234,
"forks": 56,
"totalCommits": 892,
"contributorCount": 12,
"contributors": ["alice", "bob", "..."],
"description": "Repository description",
"createdAt": "2023-01-15T...",
"pushedAt": "2024-12-01T...",
"ageInDays": 685,
"isFork": false,
"parentRepo": null,
"redFlags": ["Low commit count", "..."],
"greenFlags": ["Active development", "..."],
"lastCommit": {
"sha": "abc123...",
"date": "2024-12-01T...",
"message": "Fix bug in...",
"author": "alice"
}
}
}Interested in integrating RepoScan? Reach out on Telegram to get an API key and discuss partnership opportunities.
On this page