---
title: "Source Code"
slug: "fortanix-key-insight-on-premises-source-code"
updated: 2025-11-03T09:18:36Z
published: 2025-11-03T09:18:36Z
---

> ## Documentation Index
> Fetch the complete documentation index at: https://support.fortanix.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Source Code

## 1.0 Introduction

This article provides an overview of the Fortanix Key Insight on-premises **Source Code** infrastructure, which is used to scan cryptographic materials stored within on-premises local repositories.

It also describes:

- Source Code scanning architecture
- Source Code scanning process
- Source Code scanning benefits

## 2.0 Terminology References

*For on-premises connection concepts and supported features, refer to*[*On-premises Connection Concepts*](https://support.fortanix.com/docs/fortanix-key-insight-for-on-premises-concepts)*.*

## 3.0 Architecture

The following diagram illustrates the on-premises source code scanning infrastructure integrated with Fortanix Key Insight:

![](https://cdn.us.document360.io/c3bd85d2-4ad8-4d85-9f60-f1c168a3aad9/Images/Documentation/KI_Source Code.png)

**Figure 1: Source Code Scanning Architecture**

### 3.1 Components

The architecture consists of two main components:

- **Repositories (Git, Azure Repos, and so on):**A repository (repo) is a storage location for source code and related artifacts, including code files, configuration files, documentation, version history, and branches for development, bug fixes, and releases.
- **Fortanix On-premises Scanner (**`fortanix-scanner`**)**: Installed once per organization. It connects to supported repositories, retrieves metadata, and forwards the collected information to Fortanix Key Insight.

### 3.2 Workflow

This section outlines the workflow for scanning the Source Code:

- The Fortanix On-premises Scanner connects to your code repository using its URL and credentials. It analyzes the codebase to identify cryptographic artifacts such as keys, certificates, algorithms, and their usage locations within the source code.
- The Fortanix On-premises Scanner aggregates the collected metadata and establishes an outbound connection to the Fortanix Key Insight SaaS for analysis, reporting, and visualization.

## 4.0 Scan Source Code Using Fortanix On-premises Scanner

The Fortanix On-Premises Scanner is the primary component responsible for discovering and extracting encryption metadata from on-premises repositories.

It is available for the following platforms:

- **Linux**: Provided as `.deb` and `.rpm` packages.
- **Windows**: Provided as an `.exe` executable.

*For detailed information on source code scanning using the Fortanix On-premises Scanner, refer to the following:*

- [*On-premises Scanner Configuration - Linux*](https://support.fortanix.com/docs/fortanix-key-insight-on-premises-scanner-configuration-linux)
- [*On-premises Scanner Configuration - Windows*](https://support.fortanix.com/docs/fortanix-key-insight-on-premises-scanner-configuration-windows)
- [*On-premises Scanner Configuration File*](https://support.fortanix.com/docs/fortanix-key-insight-on-premises-scanner-configuration-file)

## 5.0 Source Code Scanning Benefits

The source code scanning process helps to:

- Highlight cryptographic implementations that deviate from enterprise security policies.
- Identify the cryptographic assets used within the source code.
- Detect hardcoded or exposed keys and secrets early in the development lifecycle.
- Strengthen DevSecOps practices by integrating key scanning into CI/CD pipelines.
- Enable a unified inventory view to support post-quantum cryptography (PQC) readiness and key lifecycle management.

Fortanix Key Insight identifies encryption keys and data services across on-premises and hybrid multicloud environments, providing a unified dashboard for tracking key mappings and cryptographic security. It offers security and compliance teams data-driven insights to assess risks, align with best practices, and meet industry regulations. Iy also supports continuous risk mitigation and crypto-agility, adapting to evolving security needs, including preparation for the post-quantum era.

The Fortanix On-premises Scanner is a configuration component installed within an organization’s local infrastructure. It is designed to scan, analyze, and manage sensitive cryptographic data using Fortanix Key Insight. The scanner identifies keys, certificates, and compliance information within on-premises systems. It supports both Linux and Windows platforms, allowing for flexible and secure deployment and visibility across different environments.