Skip to content

Add VulnHawk - AI-powered code security scanner#1801

Open
momenbasel wants to merge 1 commit intoanalysis-tools-dev:masterfrom
momenbasel:add-vulnhawk
Open

Add VulnHawk - AI-powered code security scanner#1801
momenbasel wants to merge 1 commit intoanalysis-tools-dev:masterfrom
momenbasel:add-vulnhawk

Conversation

@momenbasel
Copy link
Copy Markdown

@momenbasel momenbasel commented Apr 8, 2026

Summary

  • Adds VulnHawk to the static analysis tools list
  • VulnHawk is an AI-powered code security scanner (Python, MIT licensed) that uses LLMs to understand business logic and detect vulnerabilities that pattern-matching tools miss
  • Detects missing auth checks, IDOR flaws, logic bugs by cross-referencing how different parts of a codebase handle security

Tool details

  • Languages: Python, JavaScript/TypeScript, Go
  • License: MIT
  • Install: pip install vulnhawk
  • LLM backends: Claude, OpenAI, Ollama (local/private)
  • Output formats: JSON, SARIF, Markdown
  • Integrations: CLI, GitHub Action
  • Scan modes: full, auth, injection, secrets, config, crypto

Checklist

  • Tool is actively maintained
  • Added as YAML file in data/tools/
  • Description under 500 characters
  • License specified (MIT)
  • Relevant tags added (python, javascript, typescript, go, security)

@momenbasel
Add VulnHawk to static analysis tools list
cf9a539 
VulnHawk is an AI-powered code security scanner (Python, MIT licensed)
that uses LLMs to understand business logic and detect vulnerabilities
like missing auth checks, IDOR flaws, and logic bugs. Supports Python,
JavaScript/TypeScript, and Go. Multiple LLM backends (Claude, OpenAI,
Ollama). Output formats: JSON, SARIF, Markdown.
Copilot AI review requested due to automatic review settings April 8, 2026 21:53
Copilot AI reviewed Apr 8, 2026
View reviewed changes
Copy link
Copy Markdown

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Adds a new tool definition for VulnHawk to the repository’s static analysis/tools catalog so it can be rendered/consumed alongside existing linters and security scanners.

Changes:

  • Introduces data/tools/vulnhawk.yml describing VulnHawk (categories, tags, license, types, source, description).

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

data/tools/vulnhawk.yml
Comment on lines +11 to +14
types:
- cli
source: 'https://github.com/momenbasel/vulnhawk'
description: >-
Copy link

Copilot AI Apr 8, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

homepage appears to be a required field for tool entries (the renderer’s Entry/ParsedEntry structs require it). This new tool file only sets source, so CI/rendering will likely fail to deserialize the YAML. Add a homepage: URL (can be the project website or reuse the GitHub repo URL if there isn’t a separate homepage).

Copilot uses AI. Check for mistakes.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@momenbasel