Files & Projects Tools
Community access-lane scanner and local control engine for AI-built apps
LLM SAST skills — turn your AI coding assistant into a SAST scanner for your codebase.
Open-source supply-chain security scanner for npm, PyPI, Cargo, Go, Docker, VS Code extensions, GitHub Actions, IaC and Solana C2. Detects GlassWorm, Shai-Hulud, PPE attacks, dependency confusion and 120+ malware indicators. Generates CycloneDX 1.6 SBOMs
CLI security scanner for JavaScript and TypeScript projects
Fast, free, accurate npm dependency vulnerability scanner for local + CI/CD with an interactive HTML dashboard and SARIF/JUnit output, powered by OSV.dev
A security scanner as fast as a linter, written in Rust. 170+ built-in rules across 10 languages.
Drift scanner — detects codebase divergence from governance patterns
Know what you're installing before you npx it. A security scanner for Model Context Protocol (MCP) servers and client configs.
Security scanner for AI-generated code — find vulnerabilities before you ship
Static security scanner for AI CLI and MCP configurations — detects credential leaks, prompt injection, jailbreaks, and supply chain risks
PM AID Full -- AI agent defense scanner. 74 shipped JS-native modules, including refusal-bait scanner evasion, offline ED25519 licensing, Basic/Full module tiers, and zero-retention local scans.
Read-only static scanner for MCP/agent-gateway production-readiness anti-patterns. Scores a repo across 7 dimensions.
Security scanner for AI agent tools — detect tool poisoning, permission abuse, and supply chain attacks in MCP servers and agent skills
Open-source HIPAA compliance scanner for healthcare code — CLI for verification-layer.
Security scanner for MCP server configurations. Finds risky tools, vulnerable packages, and suspicious servers across Claude Desktop, Cursor, VS Code, and more.
Scanbot Barcode Scanner SDK React Native Plugin for Android and iOS