Frontguard by Pubflow

Frontguard is a local-first client-side security scanner for modern web apps. It helps developers review browser-visible risks before they become production incidents.

Use Frontguard to scan the current tab for exposed secrets, public frontend environment variables, risky client-side storage, security header gaps, framework signals, BaaS/auth configuration, and suspicious network behavior.

Frontguard supports safe passive scans and opt-in deep active scans. Safe scans inspect loaded assets, storage, visible cookies, headers, and resource signals without replaying requests or modifying data. Deep active scans only start when you explicitly enable them, then locally observe fetch/XHR traffic while you use the app.

What Frontguard can help detect:

Exposed API keys and secret-like values:

Supabase, Firebase, Clerk, Auth0, Cognito, Appwrite, Hasura, Sanity, and Contentful client-side signals