ScopeSentry

ScopeSentry is a web app (with optional CLI) that audits and continuously monitors OAuth scopes, API keys, and service accounts across your SaaS integrations. It connects to common platforms (Google Workspace, GitHub, Slack, AWS, Stripe, Salesforce, Okta) and builds an inventory of who granted what access, when, and to which app. It flags risky patterns like admin-level scopes, unused tokens, long-lived refresh tokens, and shadow integrations created by employees. The product focuses on actionable remediation: one-click revoke, least-privilege recommendations, and approval workflows for new integrations. It also generates audit-ready reports for SOC 2/ISO 27001 evidence, including change history and reviewer sign-offs. This is not a “nice dashboard”—it’s a practical control layer for companies that already have too many integrations and no visibility into permissions sprawl.