vibesafex 0.3.0__tar.gz

vibesafex-0.3.0/.github/workflows/ci.yml

@@ -0,0 +1,27 @@
+name: CI
+
+on:
+  push:
+    branches: [main]
+  pull_request:
+    branches: [main]
+
+jobs:
+  test:
+    runs-on: ubuntu-latest
+    strategy:
+      matrix:
+        python-version: ["3.9", "3.10", "3.11", "3.12", "3.13"]
+
+    steps:
+      - uses: actions/checkout@v4
+      - name: Set up Python ${{ matrix.python-version }}
+        uses: actions/setup-python@v5
+        with:
+          python-version: ${{ matrix.python-version }}
+      - name: Install
+        run: pip install -e ".[dev]" 2>/dev/null || pip install -e .
+      - name: Install test deps
+        run: pip install pytest
+      - name: Test
+        run: pytest tests/ -v

vibesafex-0.3.0/.gitignore

@@ -0,0 +1,7 @@
+__pycache__/
+*.pyc
+*.egg-info/
+dist/
+build/
+.pytest_cache/
+.mypy_cache/

vibesafex-0.3.0/.pre-commit-hooks.yaml

@@ -0,0 +1,15 @@
+- id: vibesafe
+  name: vibesafe
+  description: Scan AI-generated Python code for security issues and anti-patterns
+  entry: vibesafe scan --fail-on error
+  language: python
+  types: [python]
+  require_serial: false
+
+- id: vibesafe-fix
+  name: vibesafe-fix
+  description: Auto-fix common issues in AI-generated Python code
+  entry: vibesafe fix
+  language: python
+  types: [python]
+  require_serial: true

vibesafex-0.3.0/CHANGELOG.md

@@ -0,0 +1,24 @@
+# Changelog
+
+All notable changes to this project will be documented in this file.
+
+The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.1.0/),
+and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
+
+## [0.3.0] - 2025-04-10
+
+### Added
+- Add code complexity analysis via `complexity.py`
+- Add SARIF output format support in `sarif.py`
+
+## [0.2.0] - 2026-04-10
+
+### Added
+- Add MCP server for IDE integration
+- Add --fix auto-fixer, pre-commit hooks, and GitHub Action
+
+## [0.1.0] - 2026-04-10
+
+### Added
+- Initial release: AI-generated code safety scanner
+

vibesafex-0.3.0/LICENSE

@@ -0,0 +1,15 @@
+                                 Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.

vibesafex-0.3.0/PKG-INFO

@@ -0,0 +1,175 @@
+Metadata-Version: 2.4
+Name: vibesafex
+Version: 0.3.0
+Summary: AI-generated code safety scanner for the vibe coding era
+Project-URL: Homepage, https://github.com/stef41/vibesafex
+Project-URL: Repository, https://github.com/stef41/vibesafex
+Project-URL: Issues, https://github.com/stef41/vibesafex/issues
+Author: stef41
+License: Apache-2.0
+License-File: LICENSE
+Keywords: ai-code-review,ai-generated-code,claude-code,code-scanner,copilot,cursor,linter,llm,mcp,security,static-analysis,vibe-coding
+Classifier: Development Status :: 4 - Beta
+Classifier: Intended Audience :: Developers
+Classifier: License :: OSI Approved :: Apache Software License
+Classifier: Programming Language :: Python :: 3
+Classifier: Programming Language :: Python :: 3.9
+Classifier: Programming Language :: Python :: 3.10
+Classifier: Programming Language :: Python :: 3.11
+Classifier: Programming Language :: Python :: 3.12
+Classifier: Programming Language :: Python :: 3.13
+Classifier: Topic :: Security
+Classifier: Topic :: Software Development :: Quality Assurance
+Requires-Python: >=3.9
+Description-Content-Type: text/markdown
+
+# vibesafex
+
+[![CI](https://github.com/stef41/vibesafex/actions/workflows/ci.yml/badge.svg)](https://github.com/stef41/vibesafex/actions/workflows/ci.yml)
+[![Python 3.9+](https://img.shields.io/badge/python-3.9+-blue.svg)](https://www.python.org/downloads/)
+[![License: Apache 2.0](https://img.shields.io/badge/License-Apache%202.0-green.svg)](LICENSE)
+[![PyPI](https://img.shields.io/pypi/v/vibesafex.svg)](https://pypi.org/project/vibesafex/)
+
+**Stop shipping AI-generated code you haven't reviewed.**
+
+vibesafex catches the bugs your AI coding agent won't tell you about: hallucinated imports, hardcoded secrets, security vulnerabilities, and dead code.
+
+Built for the vibe coding era. Works with code from Claude Code, Cursor, Copilot, Windsurf, and any AI coding tool.
+
+## Quick Start
+
+```bash
+pip install vibesafex
+vibesafex scan .
+```
+
+## What It Catches
+
+| Code | Category | Severity | What |
+|------|----------|----------|------|
+| VS100-VS110 | **Security** | error | `eval()`, `exec()`, `shell=True`, SQL injection, `os.system()`, unsafe YAML, weak hashes |
+| VS200-VS210 | **Secrets** | error | OpenAI/AWS/GitHub/Anthropic/Stripe API keys, private keys, JWTs, hardcoded credentials |
+| VS300 | **Imports** | warning | Hallucinated imports — packages that don't exist (AI's favorite mistake) |
+| VS400-VS403 | **Dead Code** | warning | Unused imports, unreachable code, empty `except: pass`, bare except |
+| VS500-VS507 | **AI Patterns** | warning | TODO/FIXME left by AI, placeholder functions, `NotImplementedError` stubs, mutable defaults, star imports |
+
+## Usage
+
+### Scan a directory
+```bash
+vibesafex scan src/
+```
+
+### Scan specific files
+```bash
+vibesafex scan main.py utils.py
+```
+
+### Check code from stdin
+```bash
+echo 'x = eval(input())' | vibesafex check
+```
+
+### JSON output (for CI/CD)
+```bash
+vibesafex scan . --format json
+```
+
+### Filter by severity
+```bash
+vibesafex scan . --severity error          # Only errors
+vibesafex scan . --fail-on warning         # Fail CI on warnings too
+```
+
+## Python API
+
+```python
+from vibesafex import scan_code, scan_file, scan_directory
+
+# Scan a string
+issues = scan_code('x = eval(input())')
+for issue in issues:
+    print(f"{issue.code}: {issue.message}")
+
+# Scan a file
+issues = scan_file("main.py")
+
+# Scan a project
+result = scan_directory("src/")
+print(f"{result.error_count} errors found in {result.files_scanned} files")
+```
+
+### Custom scanner configuration
+
+```python
+from vibesafex import Scanner
+
+scanner = Scanner(
+    severity_threshold="warning",  # Skip info-level
+    exclude_dirs={".venv", "migrations"},
+)
+result = scanner.scan_directory(".")
+```
+
+## Example Output
+
+<img src="assets/scan_report.svg" alt="vibesafex scan report" width="800">
+<img src="assets/checks_overview.svg" alt="vibesafex checks" width="800">
+
+```
+  ✗ main.py:5:0 [error] VS100: Use of eval() - potential code injection vulnerability
+  ✗ main.py:8:0 [error] VS200: Possible OpenAI API key
+  ⚠ main.py:12:0 [warning] VS300: Import 'magic_ai_lib' - package 'magic_ai_lib' not found (hallucinated import?)
+  ⚠ main.py:15:0 [warning] VS501: Function 'process' has empty body (pass) - placeholder
+  ℹ main.py:20:0 [info] VS500: TODO comment - AI may have left incomplete implementation
+
+5 files scanned: 2 errors, 2 warnings, 1 info
+```
+
+## Pre-commit Hook
+
+```yaml
+# .pre-commit-config.yaml
+repos:
+  - repo: local
+    hooks:
+      - id: vibesafex
+        name: vibesafex
+        entry: vibesafex scan --fail-on error
+        language: python
+        types: [python]
+        additional_dependencies: [vibesafex]
+```
+
+## Why Not Just Use Ruff/Pylint?
+
+vibesafex focuses specifically on **AI-generated code patterns** that traditional linters miss:
+
+- **Hallucinated imports**: AI confidently imports packages that don't exist. vibesafex checks against stdlib, installed packages, and 200+ known popular packages.
+- **Secret leakage**: AI copies real-looking API keys into code. vibesafex detects patterns for 12+ providers.
+- **Placeholder code**: AI leaves `pass`, `...`, `NotImplementedError` stubs that slip through review.
+- **AI anti-patterns**: Mutable defaults, star imports, excessive `Any` — patterns AI generates more often than humans.
+
+Use vibesafex **alongside** your existing linter, not instead of it.
+
+## See Also
+
+Part of the **stef41 LLM toolkit** — open-source tools for every stage of the LLM lifecycle:
+
+| Project | What it does |
+|---------|-------------|
+| [tokonomics](https://github.com/stef41/tokonomix) | Token counting & cost management for LLM APIs |
+| [datacrux](https://github.com/stef41/datacruxai) | Training data quality — dedup, PII, contamination |
+| [castwright](https://github.com/stef41/castwright) | Synthetic instruction data generation |
+| [datamix](https://github.com/stef41/datamix) | Dataset mixing & curriculum optimization |
+| [toksight](https://github.com/stef41/toksight) | Tokenizer analysis & comparison |
+| [trainpulse](https://github.com/stef41/trainpulse) | Training health monitoring |
+| [ckpt](https://github.com/stef41/ckptkit) | Checkpoint inspection, diffing & merging |
+| [quantbench](https://github.com/stef41/quantbenchx) | Quantization quality analysis |
+| [infermark](https://github.com/stef41/infermark) | Inference benchmarking |
+| [modeldiff](https://github.com/stef41/modeldiffx) | Behavioral regression testing |
+| [injectionguard](https://github.com/stef41/injectionguard) | Prompt injection detection |
+
+## License
+
+Apache 2.0

vibesafex-0.3.0/README.md

@@ -0,0 +1,150 @@
+# vibesafex
+
+[![CI](https://github.com/stef41/vibesafex/actions/workflows/ci.yml/badge.svg)](https://github.com/stef41/vibesafex/actions/workflows/ci.yml)
+[![Python 3.9+](https://img.shields.io/badge/python-3.9+-blue.svg)](https://www.python.org/downloads/)
+[![License: Apache 2.0](https://img.shields.io/badge/License-Apache%202.0-green.svg)](LICENSE)
+[![PyPI](https://img.shields.io/pypi/v/vibesafex.svg)](https://pypi.org/project/vibesafex/)
+
+**Stop shipping AI-generated code you haven't reviewed.**
+
+vibesafex catches the bugs your AI coding agent won't tell you about: hallucinated imports, hardcoded secrets, security vulnerabilities, and dead code.
+
+Built for the vibe coding era. Works with code from Claude Code, Cursor, Copilot, Windsurf, and any AI coding tool.
+
+## Quick Start
+
+```bash
+pip install vibesafex
+vibesafex scan .
+```
+
+## What It Catches
+
+| Code | Category | Severity | What |
+|------|----------|----------|------|
+| VS100-VS110 | **Security** | error | `eval()`, `exec()`, `shell=True`, SQL injection, `os.system()`, unsafe YAML, weak hashes |
+| VS200-VS210 | **Secrets** | error | OpenAI/AWS/GitHub/Anthropic/Stripe API keys, private keys, JWTs, hardcoded credentials |
+| VS300 | **Imports** | warning | Hallucinated imports — packages that don't exist (AI's favorite mistake) |
+| VS400-VS403 | **Dead Code** | warning | Unused imports, unreachable code, empty `except: pass`, bare except |
+| VS500-VS507 | **AI Patterns** | warning | TODO/FIXME left by AI, placeholder functions, `NotImplementedError` stubs, mutable defaults, star imports |
+
+## Usage
+
+### Scan a directory
+```bash
+vibesafex scan src/
+```
+
+### Scan specific files
+```bash
+vibesafex scan main.py utils.py
+```
+
+### Check code from stdin
+```bash
+echo 'x = eval(input())' | vibesafex check
+```
+
+### JSON output (for CI/CD)
+```bash
+vibesafex scan . --format json
+```
+
+### Filter by severity
+```bash
+vibesafex scan . --severity error          # Only errors
+vibesafex scan . --fail-on warning         # Fail CI on warnings too
+```
+
+## Python API
+
+```python
+from vibesafex import scan_code, scan_file, scan_directory
+
+# Scan a string
+issues = scan_code('x = eval(input())')
+for issue in issues:
+    print(f"{issue.code}: {issue.message}")
+
+# Scan a file
+issues = scan_file("main.py")
+
+# Scan a project
+result = scan_directory("src/")
+print(f"{result.error_count} errors found in {result.files_scanned} files")
+```
+
+### Custom scanner configuration
+
+```python
+from vibesafex import Scanner
+
+scanner = Scanner(
+    severity_threshold="warning",  # Skip info-level
+    exclude_dirs={".venv", "migrations"},
+)
+result = scanner.scan_directory(".")
+```
+
+## Example Output
+
+<img src="assets/scan_report.svg" alt="vibesafex scan report" width="800">
+<img src="assets/checks_overview.svg" alt="vibesafex checks" width="800">
+
+```
+  ✗ main.py:5:0 [error] VS100: Use of eval() - potential code injection vulnerability
+  ✗ main.py:8:0 [error] VS200: Possible OpenAI API key
+  ⚠ main.py:12:0 [warning] VS300: Import 'magic_ai_lib' - package 'magic_ai_lib' not found (hallucinated import?)
+  ⚠ main.py:15:0 [warning] VS501: Function 'process' has empty body (pass) - placeholder
+  ℹ main.py:20:0 [info] VS500: TODO comment - AI may have left incomplete implementation
+
+5 files scanned: 2 errors, 2 warnings, 1 info
+```
+
+## Pre-commit Hook
+
+```yaml
+# .pre-commit-config.yaml
+repos:
+  - repo: local
+    hooks:
+      - id: vibesafex
+        name: vibesafex
+        entry: vibesafex scan --fail-on error
+        language: python
+        types: [python]
+        additional_dependencies: [vibesafex]
+```
+
+## Why Not Just Use Ruff/Pylint?
+
+vibesafex focuses specifically on **AI-generated code patterns** that traditional linters miss:
+
+- **Hallucinated imports**: AI confidently imports packages that don't exist. vibesafex checks against stdlib, installed packages, and 200+ known popular packages.
+- **Secret leakage**: AI copies real-looking API keys into code. vibesafex detects patterns for 12+ providers.
+- **Placeholder code**: AI leaves `pass`, `...`, `NotImplementedError` stubs that slip through review.
+- **AI anti-patterns**: Mutable defaults, star imports, excessive `Any` — patterns AI generates more often than humans.
+
+Use vibesafex **alongside** your existing linter, not instead of it.
+
+## See Also
+
+Part of the **stef41 LLM toolkit** — open-source tools for every stage of the LLM lifecycle:
+
+| Project | What it does |
+|---------|-------------|
+| [tokonomics](https://github.com/stef41/tokonomix) | Token counting & cost management for LLM APIs |
+| [datacrux](https://github.com/stef41/datacruxai) | Training data quality — dedup, PII, contamination |
+| [castwright](https://github.com/stef41/castwright) | Synthetic instruction data generation |
+| [datamix](https://github.com/stef41/datamix) | Dataset mixing & curriculum optimization |
+| [toksight](https://github.com/stef41/toksight) | Tokenizer analysis & comparison |
+| [trainpulse](https://github.com/stef41/trainpulse) | Training health monitoring |
+| [ckpt](https://github.com/stef41/ckptkit) | Checkpoint inspection, diffing & merging |
+| [quantbench](https://github.com/stef41/quantbenchx) | Quantization quality analysis |
+| [infermark](https://github.com/stef41/infermark) | Inference benchmarking |
+| [modeldiff](https://github.com/stef41/modeldiffx) | Behavioral regression testing |
+| [injectionguard](https://github.com/stef41/injectionguard) | Prompt injection detection |
+
+## License
+
+Apache 2.0

vibesafex-0.3.0/action.yml

@@ -0,0 +1,48 @@
+name: 'vibesafex'
+description: 'Scan AI-generated Python code for security issues and anti-patterns'
+branding:
+  icon: 'shield'
+  color: 'purple'
+
+inputs:
+  paths:
+    description: 'Paths to scan (space-separated)'
+    required: false
+    default: '.'
+  severity:
+    description: 'Minimum severity to report (error, warning, info)'
+    required: false
+    default: 'info'
+  fail-on:
+    description: 'Fail if issues at this level or above are found'
+    required: false
+    default: 'error'
+  version:
+    description: 'vibesafex version to install'
+    required: false
+    default: 'latest'
+
+runs:
+  using: 'composite'
+  steps:
+    - name: Set up Python
+      uses: actions/setup-python@v5
+      with:
+        python-version: '3.x'
+
+    - name: Install vibesafex
+      shell: bash
+      run: |
+        if [ "${{ inputs.version }}" = "latest" ]; then
+          pip install vibesafex
+        else
+          pip install "vibesafex==${{ inputs.version }}"
+        fi
+
+    - name: Run vibesafex
+      shell: bash
+      run: |
+        vibesafex scan ${{ inputs.paths }} \
+          --severity ${{ inputs.severity }} \
+          --fail-on ${{ inputs.fail-on }} \
+          --format text

vibesafex-0.3.0/assets/checks_overview.svg

@@ -0,0 +1,114 @@
+<svg class="rich-terminal" viewBox="0 0 1055 367.2" xmlns="http://www.w3.org/2000/svg">
+    <!-- Generated with Rich https://www.textualize.io -->
+    <style>
+
+    @font-face {
+        font-family: "Fira Code";
+        src: local("FiraCode-Regular"),
+                url("https://cdnjs.cloudflare.com/ajax/libs/firacode/6.2.0/woff2/FiraCode-Regular.woff2") format("woff2"),
+                url("https://cdnjs.cloudflare.com/ajax/libs/firacode/6.2.0/woff/FiraCode-Regular.woff") format("woff");
+        font-style: normal;
+        font-weight: 400;
+    }
+    @font-face {
+        font-family: "Fira Code";
+        src: local("FiraCode-Bold"),
+                url("https://cdnjs.cloudflare.com/ajax/libs/firacode/6.2.0/woff2/FiraCode-Bold.woff2") format("woff2"),
+                url("https://cdnjs.cloudflare.com/ajax/libs/firacode/6.2.0/woff/FiraCode-Bold.woff") format("woff");
+        font-style: bold;
+        font-weight: 700;
+    }
+
+    .terminal-1798561328-matrix {
+        font-family: Fira Code, monospace;
+        font-size: 20px;
+        line-height: 24.4px;
+        font-variant-east-asian: full-width;
+    }
+
+    .terminal-1798561328-title {
+        font-size: 18px;
+        font-weight: bold;
+        font-family: arial;
+    }
+
+    .terminal-1798561328-r1 { fill: #c5c8c6;font-style: italic; }
+.terminal-1798561328-r2 { fill: #c5c8c6 }
+.terminal-1798561328-r3 { fill: #68a0b3;font-weight: bold }
+.terminal-1798561328-r4 { fill: #c5c8c6;font-weight: bold }
+.terminal-1798561328-r5 { fill: #cc555a;font-weight: bold }
+.terminal-1798561328-r6 { fill: #d0b344 }
+.terminal-1798561328-r7 { fill: #d0b344;font-weight: bold }
+.terminal-1798561328-r8 { fill: #608ab1;font-weight: bold }
+.terminal-1798561328-r9 { fill: #98a84b;font-weight: bold }
+    </style>
+
+    <defs>
+    <clipPath id="terminal-1798561328-clip-terminal">
+      <rect x="0" y="0" width="1036.0" height="316.2" />
+    </clipPath>
+    <clipPath id="terminal-1798561328-line-0">
+    <rect x="0" y="1.5" width="1037" height="24.65"/>
+            </clipPath>
+<clipPath id="terminal-1798561328-line-1">
+    <rect x="0" y="25.9" width="1037" height="24.65"/>
+            </clipPath>
+<clipPath id="terminal-1798561328-line-2">
+    <rect x="0" y="50.3" width="1037" height="24.65"/>
+            </clipPath>
+<clipPath id="terminal-1798561328-line-3">
+    <rect x="0" y="74.7" width="1037" height="24.65"/>
+            </clipPath>
+<clipPath id="terminal-1798561328-line-4">
+    <rect x="0" y="99.1" width="1037" height="24.65"/>
+            </clipPath>
+<clipPath id="terminal-1798561328-line-5">
+    <rect x="0" y="123.5" width="1037" height="24.65"/>
+            </clipPath>
+<clipPath id="terminal-1798561328-line-6">
+    <rect x="0" y="147.9" width="1037" height="24.65"/>
+            </clipPath>
+<clipPath id="terminal-1798561328-line-7">
+    <rect x="0" y="172.3" width="1037" height="24.65"/>
+            </clipPath>
+<clipPath id="terminal-1798561328-line-8">
+    <rect x="0" y="196.7" width="1037" height="24.65"/>
+            </clipPath>
+<clipPath id="terminal-1798561328-line-9">
+    <rect x="0" y="221.1" width="1037" height="24.65"/>
+            </clipPath>
+<clipPath id="terminal-1798561328-line-10">
+    <rect x="0" y="245.5" width="1037" height="24.65"/>
+            </clipPath>
+<clipPath id="terminal-1798561328-line-11">
+    <rect x="0" y="269.9" width="1037" height="24.65"/>
+            </clipPath>
+    </defs>
+
+    <rect fill="#292929" stroke="rgba(255,255,255,0.35)" stroke-width="1" x="1" y="1" width="1053" height="365.2" rx="8"/><text class="terminal-1798561328-title" fill="#c5c8c6" text-anchor="middle" x="526" y="27">vibesafe&#160;checks</text>
+            <g transform="translate(26,22)">
+            <circle cx="0" cy="0" r="7" fill="#ff5f57"/>
+            <circle cx="22" cy="0" r="7" fill="#febc2e"/>
+            <circle cx="44" cy="0" r="7" fill="#28c840"/>
+            </g>
+        
+    <g transform="translate(9, 41)" clip-path="url(#terminal-1798561328-clip-terminal)">
+    
+    <g class="terminal-1798561328-matrix">
+    <text class="terminal-1798561328-r1" x="0" y="20" textLength="1037" clip-path="url(#terminal-1798561328-line-0)">&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;vibesafe&#160;check&#160;categories&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;</text><text class="terminal-1798561328-r2" x="1037" y="20" textLength="12.2" clip-path="url(#terminal-1798561328-line-0)">
+</text><text class="terminal-1798561328-r2" x="0" y="44.4" textLength="1037" clip-path="url(#terminal-1798561328-line-1)">┏━━━━━━━━━━━━━┳━━━━━━━━━━━━━┳━━━━━━━━┳━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━┓</text><text class="terminal-1798561328-r2" x="1037" y="44.4" textLength="12.2" clip-path="url(#terminal-1798561328-line-1)">
+</text><text class="terminal-1798561328-r2" x="0" y="68.8" textLength="12.2" clip-path="url(#terminal-1798561328-line-2)">┃</text><text class="terminal-1798561328-r3" x="24.4" y="68.8" textLength="134.2" clip-path="url(#terminal-1798561328-line-2)">Category&#160;&#160;&#160;</text><text class="terminal-1798561328-r2" x="170.8" y="68.8" textLength="12.2" clip-path="url(#terminal-1798561328-line-2)">┃</text><text class="terminal-1798561328-r3" x="195.2" y="68.8" textLength="134.2" clip-path="url(#terminal-1798561328-line-2)">Codes&#160;&#160;&#160;&#160;&#160;&#160;</text><text class="terminal-1798561328-r2" x="341.6" y="68.8" textLength="12.2" clip-path="url(#terminal-1798561328-line-2)">┃</text><text class="terminal-1798561328-r3" x="366" y="68.8" textLength="73.2" clip-path="url(#terminal-1798561328-line-2)">Checks</text><text class="terminal-1798561328-r2" x="451.4" y="68.8" textLength="12.2" clip-path="url(#terminal-1798561328-line-2)">┃</text><text class="terminal-1798561328-r3" x="475.8" y="68.8" textLength="536.8" clip-path="url(#terminal-1798561328-line-2)">What&#160;It&#160;Catches&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;</text><text class="terminal-1798561328-r2" x="1024.8" y="68.8" textLength="12.2" clip-path="url(#terminal-1798561328-line-2)">┃</text><text class="terminal-1798561328-r2" x="1037" y="68.8" textLength="12.2" clip-path="url(#terminal-1798561328-line-2)">
+</text><text class="terminal-1798561328-r2" x="0" y="93.2" textLength="1037" clip-path="url(#terminal-1798561328-line-3)">┡━━━━━━━━━━━━━╇━━━━━━━━━━━━━╇━━━━━━━━╇━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━┩</text><text class="terminal-1798561328-r2" x="1037" y="93.2" textLength="12.2" clip-path="url(#terminal-1798561328-line-3)">
+</text><text class="terminal-1798561328-r2" x="0" y="117.6" textLength="12.2" clip-path="url(#terminal-1798561328-line-4)">│</text><text class="terminal-1798561328-r5" x="24.4" y="117.6" textLength="97.6" clip-path="url(#terminal-1798561328-line-4)">Security</text><text class="terminal-1798561328-r2" x="170.8" y="117.6" textLength="12.2" clip-path="url(#terminal-1798561328-line-4)">│</text><text class="terminal-1798561328-r6" x="195.2" y="117.6" textLength="134.2" clip-path="url(#terminal-1798561328-line-4)">VS100-VS110</text><text class="terminal-1798561328-r2" x="341.6" y="117.6" textLength="12.2" clip-path="url(#terminal-1798561328-line-4)">│</text><text class="terminal-1798561328-r2" x="366" y="117.6" textLength="73.2" clip-path="url(#terminal-1798561328-line-4)">&#160;&#160;&#160;&#160;11</text><text class="terminal-1798561328-r2" x="451.4" y="117.6" textLength="12.2" clip-path="url(#terminal-1798561328-line-4)">│</text><text class="terminal-1798561328-r2" x="475.8" y="117.6" textLength="536.8" clip-path="url(#terminal-1798561328-line-4)">eval,&#160;exec,&#160;shell&#160;injection,&#160;SQL&#160;injection&#160;&#160;</text><text class="terminal-1798561328-r2" x="1024.8" y="117.6" textLength="12.2" clip-path="url(#terminal-1798561328-line-4)">│</text><text class="terminal-1798561328-r2" x="1037" y="117.6" textLength="12.2" clip-path="url(#terminal-1798561328-line-4)">
+</text><text class="terminal-1798561328-r2" x="0" y="142" textLength="12.2" clip-path="url(#terminal-1798561328-line-5)">│</text><text class="terminal-1798561328-r5" x="24.4" y="142" textLength="85.4" clip-path="url(#terminal-1798561328-line-5)">Secrets</text><text class="terminal-1798561328-r2" x="170.8" y="142" textLength="12.2" clip-path="url(#terminal-1798561328-line-5)">│</text><text class="terminal-1798561328-r6" x="195.2" y="142" textLength="134.2" clip-path="url(#terminal-1798561328-line-5)">VS200-VS210</text><text class="terminal-1798561328-r2" x="341.6" y="142" textLength="12.2" clip-path="url(#terminal-1798561328-line-5)">│</text><text class="terminal-1798561328-r2" x="366" y="142" textLength="73.2" clip-path="url(#terminal-1798561328-line-5)">&#160;&#160;&#160;&#160;12</text><text class="terminal-1798561328-r2" x="451.4" y="142" textLength="12.2" clip-path="url(#terminal-1798561328-line-5)">│</text><text class="terminal-1798561328-r2" x="475.8" y="142" textLength="536.8" clip-path="url(#terminal-1798561328-line-5)">API&#160;keys,&#160;tokens,&#160;private&#160;keys,&#160;credentials&#160;</text><text class="terminal-1798561328-r2" x="1024.8" y="142" textLength="12.2" clip-path="url(#terminal-1798561328-line-5)">│</text><text class="terminal-1798561328-r2" x="1037" y="142" textLength="12.2" clip-path="url(#terminal-1798561328-line-5)">
+</text><text class="terminal-1798561328-r2" x="0" y="166.4" textLength="12.2" clip-path="url(#terminal-1798561328-line-6)">│</text><text class="terminal-1798561328-r7" x="24.4" y="166.4" textLength="85.4" clip-path="url(#terminal-1798561328-line-6)">Imports</text><text class="terminal-1798561328-r2" x="170.8" y="166.4" textLength="12.2" clip-path="url(#terminal-1798561328-line-6)">│</text><text class="terminal-1798561328-r6" x="195.2" y="166.4" textLength="134.2" clip-path="url(#terminal-1798561328-line-6)">VS300&#160;&#160;&#160;&#160;&#160;&#160;</text><text class="terminal-1798561328-r2" x="341.6" y="166.4" textLength="12.2" clip-path="url(#terminal-1798561328-line-6)">│</text><text class="terminal-1798561328-r2" x="366" y="166.4" textLength="73.2" clip-path="url(#terminal-1798561328-line-6)">&#160;&#160;&#160;&#160;&#160;1</text><text class="terminal-1798561328-r2" x="451.4" y="166.4" textLength="12.2" clip-path="url(#terminal-1798561328-line-6)">│</text><text class="terminal-1798561328-r2" x="475.8" y="166.4" textLength="536.8" clip-path="url(#terminal-1798561328-line-6)">Hallucinated&#160;packages&#160;(AI&#x27;s&#160;#1&#160;mistake)&#160;&#160;&#160;&#160;&#160;</text><text class="terminal-1798561328-r2" x="1024.8" y="166.4" textLength="12.2" clip-path="url(#terminal-1798561328-line-6)">│</text><text class="terminal-1798561328-r2" x="1037" y="166.4" textLength="12.2" clip-path="url(#terminal-1798561328-line-6)">
+</text><text class="terminal-1798561328-r2" x="0" y="190.8" textLength="12.2" clip-path="url(#terminal-1798561328-line-7)">│</text><text class="terminal-1798561328-r7" x="24.4" y="190.8" textLength="109.8" clip-path="url(#terminal-1798561328-line-7)">Dead&#160;Code</text><text class="terminal-1798561328-r2" x="170.8" y="190.8" textLength="12.2" clip-path="url(#terminal-1798561328-line-7)">│</text><text class="terminal-1798561328-r6" x="195.2" y="190.8" textLength="134.2" clip-path="url(#terminal-1798561328-line-7)">VS400-VS403</text><text class="terminal-1798561328-r2" x="341.6" y="190.8" textLength="12.2" clip-path="url(#terminal-1798561328-line-7)">│</text><text class="terminal-1798561328-r2" x="366" y="190.8" textLength="73.2" clip-path="url(#terminal-1798561328-line-7)">&#160;&#160;&#160;&#160;&#160;4</text><text class="terminal-1798561328-r2" x="451.4" y="190.8" textLength="12.2" clip-path="url(#terminal-1798561328-line-7)">│</text><text class="terminal-1798561328-r2" x="475.8" y="190.8" textLength="536.8" clip-path="url(#terminal-1798561328-line-7)">Unused&#160;imports,&#160;unreachable&#160;code,&#160;bare&#160;&#160;&#160;&#160;&#160;&#160;</text><text class="terminal-1798561328-r2" x="1024.8" y="190.8" textLength="12.2" clip-path="url(#terminal-1798561328-line-7)">│</text><text class="terminal-1798561328-r2" x="1037" y="190.8" textLength="12.2" clip-path="url(#terminal-1798561328-line-7)">
+</text><text class="terminal-1798561328-r2" x="0" y="215.2" textLength="12.2" clip-path="url(#terminal-1798561328-line-8)">│</text><text class="terminal-1798561328-r2" x="170.8" y="215.2" textLength="12.2" clip-path="url(#terminal-1798561328-line-8)">│</text><text class="terminal-1798561328-r2" x="341.6" y="215.2" textLength="12.2" clip-path="url(#terminal-1798561328-line-8)">│</text><text class="terminal-1798561328-r2" x="451.4" y="215.2" textLength="12.2" clip-path="url(#terminal-1798561328-line-8)">│</text><text class="terminal-1798561328-r2" x="475.8" y="215.2" textLength="536.8" clip-path="url(#terminal-1798561328-line-8)">except&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;&#160;</text><text class="terminal-1798561328-r2" x="1024.8" y="215.2" textLength="12.2" clip-path="url(#terminal-1798561328-line-8)">│</text><text class="terminal-1798561328-r2" x="1037" y="215.2" textLength="12.2" clip-path="url(#terminal-1798561328-line-8)">
+</text><text class="terminal-1798561328-r2" x="0" y="239.6" textLength="12.2" clip-path="url(#terminal-1798561328-line-9)">│</text><text class="terminal-1798561328-r8" x="24.4" y="239.6" textLength="134.2" clip-path="url(#terminal-1798561328-line-9)">AI&#160;Patterns</text><text class="terminal-1798561328-r2" x="170.8" y="239.6" textLength="12.2" clip-path="url(#terminal-1798561328-line-9)">│</text><text class="terminal-1798561328-r6" x="195.2" y="239.6" textLength="134.2" clip-path="url(#terminal-1798561328-line-9)">VS500-VS507</text><text class="terminal-1798561328-r2" x="341.6" y="239.6" textLength="12.2" clip-path="url(#terminal-1798561328-line-9)">│</text><text class="terminal-1798561328-r2" x="366" y="239.6" textLength="73.2" clip-path="url(#terminal-1798561328-line-9)">&#160;&#160;&#160;&#160;&#160;8</text><text class="terminal-1798561328-r2" x="451.4" y="239.6" textLength="12.2" clip-path="url(#terminal-1798561328-line-9)">│</text><text class="terminal-1798561328-r2" x="475.8" y="239.6" textLength="536.8" clip-path="url(#terminal-1798561328-line-9)">TODOs,&#160;stubs,&#160;mutable&#160;defaults,&#160;star&#160;imports</text><text class="terminal-1798561328-r2" x="1024.8" y="239.6" textLength="12.2" clip-path="url(#terminal-1798561328-line-9)">│</text><text class="terminal-1798561328-r2" x="1037" y="239.6" textLength="12.2" clip-path="url(#terminal-1798561328-line-9)">
+</text><text class="terminal-1798561328-r2" x="0" y="264" textLength="1037" clip-path="url(#terminal-1798561328-line-10)">└─────────────┴─────────────┴────────┴──────────────────────────────────────────────┘</text><text class="terminal-1798561328-r2" x="1037" y="264" textLength="12.2" clip-path="url(#terminal-1798561328-line-10)">
+</text><text class="terminal-1798561328-r2" x="1037" y="288.4" textLength="12.2" clip-path="url(#terminal-1798561328-line-11)">
+</text><text class="terminal-1798561328-r9" x="0" y="312.8" textLength="24.4" clip-path="url(#terminal-1798561328-line-12)">36</text><text class="terminal-1798561328-r9" x="24.4" y="312.8" textLength="195.2" clip-path="url(#terminal-1798561328-line-12)">&#160;built-in&#160;checks</text><text class="terminal-1798561328-r2" x="219.6" y="312.8" textLength="463.6" clip-path="url(#terminal-1798561328-line-12)">&#160;•&#160;Zero&#160;dependencies&#160;•&#160;&lt;100ms&#160;per&#160;file</text><text class="terminal-1798561328-r2" x="1037" y="312.8" textLength="12.2" clip-path="url(#terminal-1798561328-line-12)">
+</text>
+    </g>
+    </g>
+</svg>