Open Issues Need Help
View All on GitHub Detect unguarded Next.js admin API routes about 4 hours ago
enhancement help wanted good first issue
Local-first security scanner for AI-generated web apps. Runs from Claude Code, Cursor and Codex.
TypeScript
#ai-generated-code#ai-security#appsec#claude-code#codex#cursor#devsecops#gitleaks#local-first#mcp#mcp-server#opengrep#owasp#sast#security#static-analysis#supabase#trivy#typescript#vibe-coding
Community-verify one CWE to SOC 2 or ISO 27001 mapping about 4 hours ago
documentation help wanted good first issue
Local-first security scanner for AI-generated web apps. Runs from Claude Code, Cursor and Codex.
TypeScript
#ai-generated-code#ai-security#appsec#claude-code#codex#cursor#devsecops#gitleaks#local-first#mcp#mcp-server#opengrep#owasp#sast#security#static-analysis#supabase#trivy#typescript#vibe-coding
Community-verify one CWE to OWASP Top 10 mapping about 4 hours ago
documentation help wanted good first issue
Local-first security scanner for AI-generated web apps. Runs from Claude Code, Cursor and Codex.
TypeScript
#ai-generated-code#ai-security#appsec#claude-code#codex#cursor#devsecops#gitleaks#local-first#mcp#mcp-server#opengrep#owasp#sast#security#static-analysis#supabase#trivy#typescript#vibe-coding
Detect model output passed to dynamic execution or shell sinks about 4 hours ago
enhancement help wanted good first issue
Local-first security scanner for AI-generated web apps. Runs from Claude Code, Cursor and Codex.
TypeScript
#ai-generated-code#ai-security#appsec#claude-code#codex#cursor#devsecops#gitleaks#local-first#mcp#mcp-server#opengrep#owasp#sast#security#static-analysis#supabase#trivy#typescript#vibe-coding
Detect tainted component props reaching dangerouslySetInnerHTML about 4 hours ago
enhancement help wanted good first issue
Local-first security scanner for AI-generated web apps. Runs from Claude Code, Cursor and Codex.
TypeScript
#ai-generated-code#ai-security#appsec#claude-code#codex#cursor#devsecops#gitleaks#local-first#mcp#mcp-server#opengrep#owasp#sast#security#static-analysis#supabase#trivy#typescript#vibe-coding