HN Showcase
Back to browse
GitHub Repository

Open Source Agentic Security Scanner for your codebase.

44 starsPython

OpenHack – OSS security scanner, 40x cheaper, on par with Opus 4.6

by ananayarora·Jun 4, 2026·11 points·0 comments
Visit ProjectView on HN

AI Analysis

●●SolidWizardryBig Brain

Actually spins up Docker to exploit findings instead of just flagging them.

Strengths
  • Sandbox verification attempts real HTTP exploits against confirmed vulnerabilities
  • Multi-agent pipeline separates recon, hunting, validation, and verification stages
  • Browser verification catches client-side XSS and DOM-based issues with headless Chrome
Weaknesses
  • Agentic security scanning is unproven compared to established SAST tools
  • Requires Docker daemon running, adds friction to CI/CD integration
Category
Security
Target Audience

Security teams, open-source maintainers, developers concerned about codebase vulnerabilities

Similar To

Snyk · Semgrep · CodeQL

Similar Projects

Security●●Solid

MCP-scan – Security scanner for MCP server configs

First security scanner for MCP configs as the protocol gains adoption.

Niche GemShip It
AbanoubRodolf
102mo ago
Security●●●Banger

Mcpaudit – static security scanner for MCP servers

First static analyzer for MCP servers catching command injection before you plug it in.

Zero to OneSolve My Problem
allenwu06
3013d ago