Agent Audit
Pre-deploy security gate for any team building AI agents. Outputs SARIF reports compatible with GitHub Security tab.
Static security scanner for LLM agents with 49 rules mapped to OWASP Agentic Top 10. Detects prompt injection, MCP config issues, and taint analysis. 94.6% recall, 87.5% precision.
- Run before every agent deployment to detect prompt injection vulnerabilities
- Generate SARIF security reports for GitHub Security tab and compliance audits
- Validate agent codebases for taint flow from user input to tool execution
Pre-deploy security gate for any team building AI agents. Outputs SARIF reports compatible with GitHub Security tab.
Development teams deploying AI agents who need automated security validation before production.
https://github.com/HeadyZhang/agent-audit
By HeadyZhang
How to Get It
Trust Signals Auto-scanned
Community Pulse Active
Discussed on Hacker News, Reddit
- Mischief Toy Store faces DHS audit after criticism of ICE — Reddit · 18805 pts
- Would Americans support hiring an additional 15,000 IRS agents purely to assigne — Reddit · 555 pts
- I built a CLI to audit custom LangChain @tool definitions for security flaws. — Reddit · 7 pts
3 mentions across 1 sources
Reviewer notes
Auto-scanned review. These are observations, not a security certification.
Security scanning tool. Strong validation results.
How to evaluate tools before deploying →
Data shown here comes from public APIs and automated scanning. Reviewer notes reflect one person's experience. This is not a security certification or legal recommendation. Always evaluate tools according to your own organization's policies.