Every engineer should deploy to AWS from GitHub Actions without OIDC trust policy misconfigurations ending their night.
The Story
Built by an SRE with 12 years of experience managing IAM at Fortune 50 scale. After one too many 2AM incidents tracing breaches back to overly broad trust policies, I built the tool I always wanted—one that finds the misconfiguration AND fixes it automatically.
The problem isn't that teams don't know OIDC trust policies are misconfigured. Vanta told them. Their CSPM told them. The problem is that fixing it requires manually reading trust policies, writing Terraform, getting PR reviews, and coordinating across teams. It takes days per incident.
TrustFix changes that. Detect the misconfiguration, generate the Terraform fix, open the PR, validate it with the Policy Intelligence Engine™—all automatically.
What We're Building
Full NHI governance for the AI-native infrastructure era.
Every AI agent has an OIDC identity. Every misconfiguration is a breach waiting to happen. TrustFix is the security checkpoint between AI-generated infrastructure and production.
Company
Legal Entity
Vikavi Security LLC
A Delaware limited liability company
Contact
Our Values
Fix, Don't Just Alert
Alerts create noise. Automated fixes create value.
Human Approval Always
AI generates the fix. Humans review and merge. Always.
Developer-First
Built for platform engineers who expense tools, not CISOs who procure them.