Show HN: Zift – find authorization logic in your code

Category: security

Tags: authorization, policy-as-code, rust, opa, rego

Score: 6.8/10 (Innovation: 7, Technical: 7, Documentation: 7, Utility: 6)

Zift is a Rust CLI tool that scans codebases for embedded authorization logic and helps externalize it into Policy-as-Code (e.g., Rego for OPA). Its two-pass architecture combining static analysis with optional LLM-assisted scanning and MCP server integration makes it a novel approach to an important security and compliance problem.

Target audience: backend devs, security engineers, devops

Repository: https://github.com/enforceauth/zift · Rust · Apache-2.0 · 6 stars

View on Hacker News