Show HN: A Trust Index for MCP Servers
MCP服务器安全评分工具上线,CI集成与采购审查一步到位。
As a security professional whose employer has given Claude and various other AI tooling to everyone at the company, I kept finding myself as the bottl…
MCP服务器安全评分工具上线,CI集成与采购审查一步到位。
As a security professional whose employer has given Claude and various other AI tooling to everyone at the company, I kept finding myself as the bottl…
免费开源的AI Agent安全审计工具,帮你扫描漏洞、守护代理安全,开发者必备。
Article URL: https://github.com/sinewaveai/agent-security-scanner-mcp Comments URL: https://news.ycombinator.com/item?id=48870646 Points: 1 # Comments…
50个AI代理并行协作,4.66亿行代码扫描从6年缩至20小时
Alberta published a case study last week about scanning 466 million lines of code across 1,280 applications using around 50 specialized Claude agents …
上传文件或链接即可扫描恶意软件,集成70+反病毒引擎,实时检测威胁。
IT之家 7 月 7 日消息,安全公司 Blackpoint 发文,透露近期市面上出现一款名为 Avalon 的模块化恶意框架,相应框架系黑客利用 AI 打造而成。 研究人员表示,过去黑客利用 AI 生成的恶意软件多半局限于后门、勒索工具或信息窃取脚本等单一类型;而 Avalon 则属于整合多种攻击…
无需注册,秒级扫描任何公开GitHub仓库的安全漏洞,适用于遗留代码、外包项目或求职者作业审查。
TL;DR You can now paste any public GitHub repo URL and get a security grade back in seconds, no signup. It runs static analysis, secret detection, and…
央视曝光公共二维码暗藏涉黄跳转,黑灰产业利用“数字烂尾”漏洞入侵公共设施,警惕二维码背后的域名安全。
IT之家 7 月 7 日消息,用手机扫身边的二维码早已是我们习以为常的动作。但据央视新闻报道,今年 3 月,有网友发帖反映,自己在苏州上方山森林公园游玩时,扫描了园区接驳车上的一个二维码,没想到页面竟弹出涉黄内容。 无独有偶,今年 2 月底,北京也有网友截图反映,自己在扫描街边一个公共设施上的二维码…
开源项目,用默认拒绝、人工审批和加密审计追踪锁定AI代理危险行为,杜绝自授权漏洞。
Article URL: https://github.com/makerchecker/MakerChecker Comments URL: https://news.ycombinator.com/item?id=48804182 Points: 16 # Comments: 8
一键扫描你的AI项目是否符合欧盟AI法案合规要求,开源免费5秒出结果
Article URL: https://github.com/latreon/compliance-agent Comments URL: https://news.ycombinator.com/item?id=48793704 Points: 1 # Comments: 0
WebCensus 实现超高速跨域路径扫描,基于真实 Chrome 排名域名列表,五步脚本管道清晰可复现
Article URL: https://github.com/Kirill89/webcensus Comments URL: https://news.ycombinator.com/item?id=48792329 Points: 1 # Comments: 0
GitHub安全工程师揭秘如何用秘密扫描自动化清理告警,实现收件箱零的实战方法。
GitHub had 20,000+ secret scanning alerts across 15,000 repositories. Here's how we separated signal from noise, built remediation workflows, and reac…
将清晰的PDF变为带有扫描痕迹的打印件效果,模拟纸质复印质感,开源且支持网页端直接操作。
如下图,make-look-scanned 是一款可以将 PDF 文档处理为打印件的开源工具,就像是扫描的样子。 其实青小蛙一直不太理解这个需求,就是在拥有更清晰的PDF文档的时候,还需要一个不清晰的版本,到底是为什么呢?或者,有一些文件需要打印盖章? make-look-scanned:使 PDF
用字体直接写条形码,开源项目让编码变得简单可扫描。
Article URL: https://graphicore.github.io/librebarcode/ Comments URL: https://news.ycombinator.com/item?id=48681949 Points: 268 # Comments: 49
一款由思科开源的AI技能安全扫描器,5分钟快速检测提示注入与数据泄露风险。
Article URL: https://github.com/cisco-ai-defense/skill-scanner Comments URL: https://news.ycombinator.com/item?id=48656076 Points: 2 # Comments: 0
集8大安全扫描器于一身,GitHub Action一键集成,统一输出漏洞报告,开源利器守护CI/CD安全。
Article URL: https://github.com/skaldlab/muninn Comments URL: https://news.ycombinator.com/item?id=48605644 Points: 1 # Comments: 0
专为LLM设计的红队漏洞扫描工具,帮你发现大模型安全隐患。
Article URL: https://github.com/Jake-Schoellkopf/aicu Comments URL: https://news.ycombinator.com/item?id=48589149 Points: 1 # Comments: 0
60秒内完成超声全身扫描,比MRI更快更安全,无辐射。
60 second ultrasound-based full-body scanner that beats MRI Discussion | Link
VirusTotal 通过整合70+反病毒引擎扫描链接和文件,快速识别恶意内容,用于分析文章中的可疑 URL 最合适。
Article URL: https://roman.pt/posts/linkedin-backdoor/ Comments URL: https://news.ycombinator.com/item?id=48546294 Points: 675 # Comments: 140
使用Claude LLM扫描AUR软件包中的恶意代码,成功揪出伪装成浏览器补丁的问题包,为Arch用户筑起安全防线。
Article URL: https://github.com/manticore-projects/aurscan/tree/main Comments URL: https://news.ycombinator.com/item?id=48538118 Points: 1 # Comments:…
无需外部API,一个3B参数模型就能帮你看懂租赁合同里的隐藏风险。
I built Lease Lens for the Hugging Face Build Small Hackathon . The idea is simple: most people sign contracts they do not really read. That is true f…