Security guardrails for Claude Code, MCP tools, and Claude cowork workflows. Local-first modular YARA-style guard packs for secrets, exfiltration, prompt injection, MCP abuse, and risky agent actions.

A zero-configuration npm wrapper for Gitleaks that automatically installs the binary and simplifies secret scanning in local hooks and CI/CD pipelines.

Open source local first security scanning CLI for repositories with zero manual setup.

Agentic Security CLI Orchestrator // Cloud Secret & Neural AI Defense

Scans the real npm publish tarball before release and blocks leaks like source maps, secrets, internal files, and suspicious oversized artifacts.

Stop shipping CLAUDE.md, source maps, prompts, MCP configs, and secrets in AI-era release artifacts.

GitHub Action for automating Boom Token workflows using JavaScript. This action simplifies tasks like smart contract interactions, token analytics, and liquidity management for Boom Token on multiple networks.

A clean, local-first CLI for 100% passive security auditing of JS/TS repos and URLs—secrets, dependency vulns, SAST, TLS/headers/cookies/CORS—built for streamable scan → merge → report workflows.

High-signal secrets scanner — entropy analysis, low false positives

Reusable CI secret‑leak guard: boxed secrets + Gitleaks. One‑line GitHub Action (GHAS optional).

AWS DevSecOps CI/CD Pipeline Using Jenkins, Terraform, IAM Roles, AWS ECR and AWS Secrets Manager

ProofPR: PR evidence scanner and GitHub Action for maintainers. Review tests, secrets, CI permissions, dependencies, and MCP risk.

Defensive security audit toolkit for authorized web and local projects.

ContractGuard helps developers catch security and reliability issues directly inside VS Code. It analyzes common project file types, flags risky patterns such as secrets, unsafe SQL, complex regex, and insecure configuration, and presents results through diagnostics, a findings view, status bar scoring, and SARIF export

DevSecOps CI/CD pipeline. SAST+SCA+secrets scanning blocks 100% of high-sev vulns from production.

Secrets and credential scanner for git repositories and local file trees

Tool to scan for leaks of info.

Stop leaked secrets, removed auth, unsafe config, and over-permissive agent access in AI-generated diffs.

Tamp wrapper for TruffleHog 3.x — secret scanning across git/github/filesystem/docker/etc.

A developer safety tool that scans repositories for secrets, PII, and sensitive files before push or publication. Includes incremental scans and Git hook integration.