# Linux Setup for Local Code Scanning **Table of contents:** * [Requirements](#requirements) * [Temporary folder](#temporary-folder) * [How to set up Local Scanning](#how-to-set-up-local-scanning) * [1. Get your authentication token](#1-get-your-authentication-token) * [2. Adding the Local Scanner to your project](#2-adding-the-local-scanner-to-your-project) * [3. Running the Local Scanner](#3-running-the-local-scanner) * [4. Check your scanning results](#4-check-your-scanning-results) ## Linux Setup for Local Code Scanning The Aikido Security Local Scanner is a tool that enables you to perform Aikido Security scans within your environment, ensuring your code never leaves your premises. The scans take place locally, and the results are then uploaded to the Aikido Security platform. This setup allows you to scan any repos locally own your own machine. ### Requirements We currently support the x86\_64 and ARM64 operating system architecture. ### Temporary folder The scanner creates a temporary local folder (default .aikidotmp) to perform certain actions: * Copy certain lockfiles to run efficient scanning. * Write the results of the scanners. This folder is cleaned up after the scanning is finished. In addition, some files are copied to the temporary operating directory. Ensure that enough space is available; we recommend a minimum of 10GB. ### How to set up Local Scanning #### 1. Get your authentication token 1. Go to the [Local Scanner setup page](https://app.aikido.dev/settings/integrations/localscan) 2. Generate an authentication token and copy. Note that you will only be able to view this token once. 3. Add this token as argument `--apikey` when running the Local Scanner in your project . #### 2. Adding the Local Scanner to your project Download the local scanner binary from the Aikido UI. #### 3. Running the Local Scanner Now all that is left to run the scanner on the directory you want to scan. ```shellscript ./aikido-local-scanner scan path_to_my_repository --apikey AIK_CI_xxx --repositoryname DemoApp --branchname main ``` By default all scanners will be executed, if you'd like to run only a selection of scanners, you can do so by supplying the scanner names `--scanners` option. More information on CLI options can be found [here](https://help.aikido.dev/en/articles/9027526-local-scanner-cli-options). Alternatively, you can use our Docker image from [Docker Hub](https://hub.docker.com/r/aikidosecurity/local-scanner) or [AWS Elastic Container Registry](https://gallery.ecr.aws/z1o3v2w5/aikidosecurity/local-scanner) to scan your repository. Ensure that you have [Docker installed](https://docs.docker.com/desktop/) before proceeding. First navigate into the directory you want to scan and run a scan using a command like: ```shellscript docker run --rm -v "$(pwd):/my-app" aikidosecurity/local-scanner scan /my-app --apikey AIK_CI_xxx --repositoryname RepoName --branchname main ``` #### 4. Check your scanning results After your first scan is done, you can go to the Aikido Feed to check out your results. A repository with the name you specified will have been created, containing all results from the scanning. --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://help.aikido.dev/code-scanning/local-code-scanning/linux-setup-for-local-code-scanning.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.