HN Showcase
Back to browse
GitHub Repository

What can your TypeScript AI agent do to the real world? Scan your code. See which tool calls have zero checks

2 starsTypeScript

Scan your AI agent's code for tool calls with no checks

by jguarnelli·May 28, 2026·2 points·0 comments
Visit ProjectView on HN

AI Analysis

●●SolidBig BrainShip It

Finds unguarded agent tool calls before your LLM charges a customer twice.

Strengths
  • Static AST analysis runs in ~9 seconds on 7,874-file codebases
  • Maps findings directly to OWASP Agentic Top 10 vulnerability codes
  • Two dependencies, simple CLI that fits into CI pipelines
Weaknesses
  • TypeScript-only limits audience to one language ecosystem
  • Very early stage with 1 star, unproven at scale
Category
Security
Target Audience

Developers building AI agents in TypeScript

Similar To

Semgrep · Bandit · ESLint security plugins

Similar Projects

Security●●●Banger

A security scanner for AI Agent Skills

Docker sandbox execution catches runtime threats static analysis alone misses.

Big BrainBold Bet
mayziem
502mo ago
Security●●Solid

Open-source scanner finds 97% of AI agent code non-compliant EU AI Act

Linter for EU AI Act: scans agent code against Articles 9–15, finds 97% non-compliance.

Big BrainBold Bet
airblackbox
113mo ago