PatchProof

PatchProof is a web app (with an optional lightweight CLI agent) that focuses on one neglected part of vulnerability scanning: verification. Instead of endlessly re-running broad scans, it creates a “proof-of-fix” workflow that ties a specific finding to a reproducible test, then automatically re-tests only that exploit path after a patch, config change, or WAF rule update. It supports common web app vuln classes (XSS, SQLi, SSRF, auth bypass patterns) using safe, non-destructive payloads and records evidence: request/response diffs, screenshots for UI flows, and a signed audit log for compliance. It integrates with Jira/GitHub Issues and CI pipelines so teams can require verified closure before merging or releasing. This is not a replacement for enterprise scanners; it’s a pragmatic layer that reduces false closures and prevents “fixed” vulns from quietly persisting or reappearing.