This is an active static analysis tool for NGINX configurations, focusing on discovering security issues within the configurations. It is capable of detecting various common NGINX configuration vulnerabilities, such as server-side request forgery, host header poisoning, and path traversal, and is usable from the command line or within Docker and Kubernetes.