Security Remediation Orchestrator for Coupang.
Orchestrates parallel Devin sessions to remediate security findings at scale. Ingests findings, dispatches wave-based Devin sessions with category-specific playbooks, monitors progress via structured output, and surfaces everything through a dashboard interface.
- Python 3.11+
- Node.js 18+
cp .env.example .env
# edit .env with your DEVIN_API_KEY
pip install -e ".[dev]"
cd dashboard && npm install && cd ..# orchestrator
python -m orchestrator.main run sample_data/findings_live.csv --wave-size 5
# dashboard (on separate terminal)
cd dashboard && npm run dev
# http://localhost:3000python -m orchestrator.main ingest sample_data/findings_live.csv # parse + prioritize
python -m orchestrator.main plan sample_data/findings_live.csv # preview wave plan
python -m orchestrator.main run sample_data/findings_live.csv # full pipeline
python -m orchestrator.main run ... --dry-run # show w/o executing
python -m orchestrator.main run ... --live # real Devin API
python -m orchestrator.main run ... --hybrid # live for connected repos, mock for rest
python -m orchestrator.main status # current run progresspytestorchestrator/ Python orchestrator (ingest, plan, dispatch, monitor)
dashboard/ Next.js dashboard (reads state.json, auto-refreshes)
playbooks/ .devin.md remediation playbooks per finding category
mock/ Mock Devin client for local development
sample_data/ Demo CSV with ~20 findings
tests/ pytest suite