I built Audit8n (https://audit8n.com) to solve a problem I kept running into: n8n workflows that looked fine on the surface but had hidden security vulnerabilities, performance bottlenecks, and reliability issues.

The tool runs 100+ checks across three categories:

• Security: hardcoded secrets, public webhooks without auth, RCE via Execute Command nodes • Performance: aggressive polling intervals, AI token bloat, N+1 SQL patterns • Reliability: fragile loops without error handling, blocking merge nodes, infinite loops

All local analysis happens in the browser—zero data transfer. There's also an optional AI-powered deep scan using AI for semantic analysis of complex workflows.

Built with Next.js 16, React 19, and TypeScript.

Would appreciate any feedback on the detection rules or UI/UX.