> ## Documentation Index
> Fetch the complete documentation index at: https://docs.vidocsecurity.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Introduction

> AI-powered code security that finds real vulnerabilities

## What is Vidoc?

Vidoc is a code security platform that uses AI to detect real security vulnerabilities in your source code. Unlike traditional static analysis tools that flood you with false positives, Vidoc validates each finding against your codebase context to surface only actionable issues.

## Key Capabilities

<CardGroup cols={2}>
  <Card title="AI-Powered Detection" icon="brain">
    LLMs analyze your code to find vulnerabilities that pattern-based scanners miss
  </Card>

  <Card title="Context-Aware Validation" icon="check-circle">
    Each finding is validated against your codebase to reduce false positives
  </Card>

  <Card title="Learnings System" icon="graduation-cap">
    Teach Vidoc your codebase patterns to continuously improve accuracy
  </Card>

  <Card title="PR Integration" icon="code-pull-request">
    Get security feedback directly in your GitHub pull requests
  </Card>
</CardGroup>

## Who Uses Vidoc?

**AppSec Teams** use the Vidoc dashboard to:

* Configure security scanning for repositories
* Review and triage security findings
* Create learnings to reduce false positives
* Track security posture across projects

**Developers** interact with Vidoc through:

* GitHub PR comments with security feedback
* CLI for local scanning during development
* AI chat for understanding security issues

## How It Works

```mermaid theme={null}
flowchart LR
    A[Your Code] --> B[Vidoc Scan]
    B --> C[AI Detection]
    C --> D[Context Validation]
    D --> E[Real Issues]
    E --> F[PR Comments / Dashboard]
```

1. **Scan** - Vidoc analyzes your code via GitHub integration or CLI
2. **Detect** - AI identifies potential security vulnerabilities
3. **Validate** - Each finding is validated against codebase context
4. **Report** - Real issues surface in the dashboard and PR comments

## Security Categories

Vidoc detects two main types of security issues:

| Type                       | Description                               | Examples                                                 |
| -------------------------- | ----------------------------------------- | -------------------------------------------------------- |
| **Attack Vulnerabilities** | Issues that can be directly exploited     | XSS, SQL Injection, Command Injection, SSRF              |
| **Compliance Issues**      | Security weaknesses and misconfigurations | Hardcoded secrets, weak cryptography, insecure transport |

## Get Started

<CardGroup cols={2}>
  <Card title="Quickstart" icon="rocket" href="/quickstart">
    Run your first scan in 5 minutes
  </Card>

  <Card title="GitHub Setup" icon="github" href="/github/setup">
    Connect GitHub for automatic PR scanning
  </Card>

  <Card title="CLI Installation" icon="terminal" href="/cli/installation">
    Install the Vidoc CLI for local scanning
  </Card>

  <Card title="How It Works" icon="lightbulb" href="/how-it-works">
    Learn about Vidoc's AI-powered detection
  </Card>
</CardGroup>