Scan AI coding workflows for code, secrets, dependency, and tool security risks.
Copy the install command and let the AI configure it · recommended for beginners
No copy-paste install info for "Zfuzz" yet — see the docs or source repo.
Use Zfuzz to scan this repository for SAST findings, then summarize high- and medium-severity issues by file, severity, and remediation advice.
A file-by-file vulnerability summary with severity levels and remediation guidance.
Use Zfuzz to check the project for leaked API keys, access tokens, passwords, or certificates, and identify exact locations and remediation priority.
Detection results listing secret type, location, risk explanation, and remediation priority.
Use Zfuzz to analyze known CVEs in current dependencies and review the security risks of the MCP tools or skills in use, then provide a MITRE ATT&CK-aligned risk overview.
A combined report of dependency vulnerabilities and tool risks with attack mapping and mitigation recommendations.
Scan Python projects and GitHub repos for vulnerabilities, secrets, and AI risk insights.
Run comprehensive code and config security scans for AI coding assistants.
Scan AI agents for tool-calling vulnerabilities and surface key security risks.
Run pay-per-call security scans, threat intel, compliance, and code checks for AI agents.
Audit codebases locally with LLMs to uncover security flaws privately.
Scan AI-generated code for injections, secrets, SSRF, and risky patterns.