Generated patch revisions
Create a unified diff, review it, give feedback, and generate a new revision without granting repository write access.
Generate focused diffs, stage audited auto-fix proposals, open pull requests through ZeroQuarryBot, or hand findings into the team’s ticketing system. Retest the result in the same lineage.
Security automation should reduce translation work without silently approving production changes. ZeroQuarry separates generation, repository permission, operator approval, CI, and merge.
Create a unified diff, review it, give feedback, and generate a new revision without granting repository write access.
Install a GitHub App on selected repositories and open audited PRs from approved proposals.
Use account and repository kill switches, explicit enrollment, base-branch settings, file deny-lists, size limits, and push caps.
After a successful manual workflow, selected repositories can send qualifying proposals straight to PR review without auto-merging.
Create Jira or ServiceNow work, or open a prefilled GitHub Issue when code changes are not the right first step.
Re-run focused assessments, record mitigation and retest decisions, and surface a later recurrence as regression.
ZeroQuarry automates investigation and coordination. Your team keeps control of authorization, risk ownership, and production changes.
Confirm the vulnerability applies to the product before generating or filing remediation work.
Generate a patch, auto-fix proposal, or ticket with source, impact, proof, and expected outcome.
Use normal engineering ownership, CI, branch protection, and code-review controls.
Verify the risk after merge and record retested or regression state in the original history.
Useful coverage should lead to faster decisions, cleaner remediation, and evidence that holds up when someone asks for it later.
Reduce the manual translation from vulnerability narrative to code path, reproduction, and candidate change.
Get the speed of generated fixes while preserving explicit repository gates and human merge authority.
Differentiate “a fix was merged” from “the security risk was actually retested.”
These are the product boundaries, controls, and operating details teams usually want to understand first.
No. ZeroQuarryBot opens pull requests; your repository’s reviewers, CI, branch protection, and merge policy remain in control.
No. Patch generation can produce a downloadable or revisable diff without repository write access. The GitHub App is only needed for the pull-request workflow.
An account-wide kill switch stops all pushes, and each repository has its own kill switch. Repository enrollment and GitHub App access add separate permission gates.
Use the free trial on your own product, then decide whether the resulting security work is useful enough to keep.