LLM-Audit – Semgrep Rules for OWASP LLM Top in TypeScript
Fills the TypeScript gap that Semgrep's official AI best practices pack misses.

Educational blog post, not a product — scanner analysis without shipped tooling.
Security engineers and penetration testers
Fills the TypeScript gap that Semgrep's official AI best practices pack misses.
CTF-style flags for voice prompt injection make learning LLM security actually fun.
First MCP security scanner addressing early Docker Hub moment—but audience is still nascent.
Verifying ownership with a DNS TXT record and spinning up ephemeral Cloud Run jobs to produce a PDF report in under an hour is a pragmatic approach — cheap to operate and low-friction for SMBs. It's explicitly automated (no manual pentest), which keeps expectations honest, but the market already has mature scanners and few standout differentiators here beyond pricing and convenience; continuous monitoring, remediation guidance or integrations would make it much more compelling.
Task-level automation risk scores for every U.S. job, grounded in BLS and O*NET.
Fear-based career audit that gates the action plan behind $9/mo.