Spekris scans your GitHub, GitLab, and cloud environments to discover AI agents, LLM integrations, and automation workflows. It assigns ownership, scores risk, and generates documentation for the compliance frameworks your auditors care about.
No credit card required · First scan in under 5 minutes · Cancel anytime
AI asset posture across 6 connected sources
Total assets
247
Critical
14
Orphaned
6
Violations
9
Risk distribution
Every quarter, new agents, LLM integrations, and ML services land in production — often without security review, compliance sign-off, or documented ownership. When engineers leave, their systems don't.
Teams are deploying AI agents, LLM integrations, and automation workflows without security review or documented oversight. If it's not in your inventory, you can't govern it.
When creators leave the company, their AI systems keep running — connected to APIs, customer data, and cloud resources — with no owner on record.
Regulators and auditors are asking about your AI systems. EU AI Act, SOC 2, and ISO 42001 assessments now expect a documented inventory most teams don't have.
Link GitHub, GitLab, AWS, Azure, GCP, Zapier, n8n, Make, and HR systems like BambooHR or Rippling. Credentials are encrypted with AES-256-GCM before storage.
Scans repos for agent frameworks (CrewAI, AutoGen, LangGraph, LangChain), AI dependencies in package.json and requirements.txt, LLM API keys in .env files, and AI patterns in Dockerfiles and Terraform.
Review discovered assets, classify by kind, set governance policies, and track compliance posture. Every discovery, change, and policy violation is logged in the audit trail.
Discover agents, pipelines, LLM integrations, and ML workflows across connected repos. Assets are classified by kind: agent, pipeline, workflow, script, or integration.
Rule-based heuristic scoring across 10 dimensions — ownership, data sensitivity, environment, compliance gaps, and more. Every score has an explanation.
Cross-references with HR systems to assign and verify owners. Automatically detects orphaned AI when an owner leaves the company.
Define governance rules, auto-evaluate assets against them, and trigger alerts, quarantine asset records, or create tasks when violations occur.
Generate documentation for EU AI Act, SOC 2, ISO 42001, and NIST AI RMF. Spekris supports your compliance efforts — it does not certify compliance.
Every discovery, classification change, policy violation, and governance action is logged. Export structured evidence for your security team or assessor.
10+ integrations across the systems where AI ships. Connect repos, cloud accounts, automation platforms, and HR systems. A custom SDK for proprietary systems is available on Professional and Enterprise.
Spekris generates compliance documentation mapped to specific controls across four frameworks, so you can hand structured evidence to your security team or assessor. Spekris supports your compliance efforts — it does not certify compliance.
Generate documentation for high-risk AI system registries
Map findings to CC6.6, CC7.1, CC7.2, CC8.1 controls
Governance, impact assessment, and accountability artifacts
Risk identification and management aligned to the AI Risk Management Framework
“First scan found 14 AI integrations we had no record of. Three had no owner — their authors had left the company months earlier.”
“When our SOC 2 auditor asked for an AI system inventory, we had nothing. We ran Spekris and had a structured report to share in under an hour.”
“We had a spreadsheet. It was always out of date. Now Spekris updates the inventory automatically whenever a new AI integration gets pushed to our repos.”
Connector credentials are encrypted with AES-256-GCM before storage and are never returned to the frontend. API access is scoped to your organization with enforced RBAC. Sensitive actions write structured audit logs.
For teams starting an AI governance program.
For companies under active compliance pressure.
For large organizations with complex requirements.
All plans include a 14-day free trial. No setup fees. Cancel anytime.
Connect your first source in under five minutes.