Remedix: read-only scanner for AI-built apps
Remedix is a safe, read-only scanner that checks public surfaces of AI-built apps for exposed secrets, weak auth, unsafe headers, and public storage issues. It generates AI-ready fix prompts and a launch report to help developers catch release-blocking problems before shipping.
Related
CodeInspectus: open-source security scanner for AI-generated code
CodeInspectus is a fully open-source, local security scanner that checks AI-generated code for vulnerabilities. It covers 32 checks (13 AI-specific + 19 SAST) and 200+ secret/API-key patterns, catching issues like hardcoded secrets in client-side code, exposed API keys, and insecure RLS policies. It helps developers secure projects built with LLM-generated code.
Isitsecure: 1-command SAST, DAST, and LLM security scanner for web apps
Isitsecure is an open-source tool that performs Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and LLM-specific security scanning with a single command. It helps developers, especially those using AI-generated code, identify and exploit security vulnerabilities automatically. The tool addresses the problem of insecure AI-generated code by combining SAST findings with DAST exploitation attempts.
Open-source security tool for AI agents (Clay Seal)
Clay Seal is an open-source project by two AI researchers that aims to protect AI agents from exploits and unauthorized access. It addresses the rising cybersecurity incidents caused by agents gaining access to sensitive resources like GitHub tokens and cloud credentials.
Synapse: AI-powered bug detection before code is written
Synapse is a tool that uses LLMs to analyze software architecture and specifications to catch bugs before code is written. It addresses the problem of LLMs missing critical insights in security-critical and data-integrity projects, helping developers avoid bugs early in the development process.
agentsweep CLI scans AI coding agent history files for leaked secrets
A new open-source CLI tool called agentsweep scans history files of AI coding agents (Codex, Cursor, Claude Code, Cline, Aider) for plaintext secrets like API keys, DB URLs, and crypto seed phrases. It uses ~191 detection rules from gitleaks plus a dedicated BIP-39 seed phrase detector, addressing a security risk where pasted secrets persist in agent context and can be re-exposed.



