macOS Seatbelt sandbox CLI for developers. Protect credentials (SSH, AWS, GPG) from malicious npm packages, supply chain attacks, and untrusted build scripts. Deny-by-default filesystem isolation. Perfect for Claude Code agentic workflows with --dangerously-skip-permissions.

One scan for AI risk. `opena2a review` checks an AI project across credentials, shadow agents, MCP servers, and dependencies, returns a score, and routes each finding to the tool that fixes it. Open source.

macOS tool that masks API keys during demos, livestreams, and tutorials. Menu Bar App + VS Code Extension + Chrome Extension.

MCP servers expose tools with no information about what they actually do at runtime. mcpsafetywarden sits between your agent and any MCP server, profiling tool behavior, blocking destructive calls, and running active security audits before you trust them in a workflow.

Browser-native phishing defense suite with 49 real-time detectors covering AiTM proxy, OAuth abuse, credential harvesting, WebSocket exfiltration, canvas phishing, AI-generated lures, and more. MV3 Chrome extension with zero external dependencies.

Protect your secrets and stop the breaches!

Governance infrastructure for AI agents. Risk classification, approval gates, and audit logging for autonomous systems.

Pattern-level command filtering for Claude Code. Blocks the dangerous stuff, asks about the risky stuff, lets the normal stuff through.

a secret manager helping you protect secrets and credentials in source code and config files

428 regex patterns for detecting dangerous commands and credential file access. Data layer for HardStop and compatible AI safety tools.

C++ LSASS protection status monitor for credential theft prevention