Static analysis
A lightning-fast, AST-powered structural duplicate code detector for Python. Find similar functions, refactor copy-paste technical debt, and enforce DRY principles across large codebases instantly.
Pre-commit skill that kills credential leaks. Scans code for hardcoded secrets, blocks unsafe commits, reports with line numbers.
Create interactive explorer graph of types and interfaces in a TypeScript codebase
VAXD is a lightweight Windows disassembler and patching assistant for native PE files (EXE/DLL in x64/x86).
Cross-language code graph extraction and visualization — symbols, call graphs, and cross-repo relationships across 34+ languages with incremental caching and federation support.
🔍 A CLI tool for security analysis of Arch AUR PKGBUILDs
Source code → structural facts. A purpose-neutral, polyglot code-graph extraction library in Rust powered by tree-sitter. Turns source files into symbols, lexical scopes, and cross-file or FFI edges as plain data. Zero storage opinion.
Cleared CLI — App Store rejection checks in CI (build-only free; ASC license-gated)
Query your Codex repo. Find what is discoverable, what is used, what is underused, and what is wasted cade.
CodeSetter: The ultimate AI-powered repository auditing toolkit. Scan your codebase for quality, security, performance, and architecture issues instantly.
Symbolic execution + Z3: mathematically prove an Xahau Hook is safe for ALL inputs. The third leg of the trifecta.
Defensive patch Tuesday semantic diff cli for Windows build snapshots
This is a production-audit orchestrator. It runs 16 specialist lenses across your codebase, merges the duplicates (the same bug seen by three lenses is one bug, not three), adversarially verifies every critical and high finding against the actual code, drops the false positives, and delivers one ranked report.
Lint your bug bounty reports for the tells that make a triager think a language model wrote them: em-dashes, "why this isn't a duplicate" sections, self-restraint walls, severity hedging, CVE garnish. Zero deps, exit 1 if it smells generated.
🐦⬛ Security scanner for GitHub Actions pipelines
Deterministic checker for behaviour-preserving code changes. Signed, re-runnable receipts; PR gate; single static binary.
Parse iOS build artifacts and run deterministic, build-only App Store checks — 100% local. The open-source core of Cleared.