Open Source Appsec Scanner
A new open-source security scanner for AI coding agents has been released, offering two versions: a lightweight and an advanced option. The lightweight version is ultra-fast, requiring only 4 seconds to install, while the advanced version includes enterprise-grade features such as AST analysis and LLM-powered semantic review. Recent updates have introduced critical security fixes and compliance evaluation tools to enhance project security.
- ▪The lightweight version of the scanner is only 81.5KB and installs in 4 seconds.
- ▪The advanced version includes over 1,700 security rules and supports 12 programming languages.
- ▪Recent updates have added compliance evidence collection for SOC2 and GDPR frameworks.
Opening excerpt (first ~120 words) tap to expand
agent-security-scanner-mcp Security scanner for AI coding agents and autonomous assistants Scans code for vulnerabilities, detects hallucinated packages, blocks prompt injection, and provides LLM-powered semantic code review — via MCP (Claude Code, Cursor, Windsurf, Cline) or CLI (OpenClaw, CI/CD). 🎯 Two Versions Available 🔥 ProofLayer (Lightweight) - NEW! Ultra-fast, zero-Python security scanner — 81.5KB package, 4-second install npm install -g @prooflayer/security-scanner ⚡ 4-second install (vs 45s traditional scanners) 📦 81.5KB package (vs 50MB+ alternatives) 🚀 Instant scans - pure regex, no Python/LLM 🛡️ 400+ security rules across 9 languages 🎯 7 MCP tools for AI agents ✅ Zero dependencies on Python 💯 MIT licensed - free for commercial use 📖 ProofLayer Documentation → 🔬 Full…
Excerpt limited to ~120 words for fair-use compliance. The full article is at GitHub.