AI is transforming vulnerability discovery for attackers and defenders alike. AI agents are now finding and exploiting vulnerabilities autonomously, at machine speed, and the open source projects the world depends on are squarely in the crosshairs.
The cost of finding vulnerabilities is collapsing toward zero for attackers. It's time defenders get there too.
That's why we're launching a free scanning program for open source projects using OpenAnt, our LLM-based vulnerability discovery tool (which we've also released as open source).
OpenAnt from Knostic doesn't just flag potential issues; it uses LLMs to actually attack your code before reporting it vulnerable, cutting through the noise of false positives. It supports Python, JavaScript, TypeScript, Go, PHP, and C/C++.
Open source maintainers are already stretched thin. They shouldn't have to face an AI-powered vulnerability onslaught without AI-powered tools of their own. That's why we'll scan open source projects for free - first come first serve.
Contact us at oss-scan@knostic.ai to tell us about your open source project and request a scan, or clone the GitHub repo and run it yourself.
Read our technical blog here: https://www.knostic.ai/blog/openant
Project page: https://openant.knostic.ai/
Github Repo: https://github.com/knostic/OpenAnt
Research: Nahum Korda
Productization: Alex Raihelgaus, Daniel Geyshis
With thanks to: Michal Kamensky, Imri Goldberg, Gadi Evron, Daniel Cuthbert. Josh Grossman, and Avi Douglen.