╔══════════════════════════════════════════════════╗ ║ PYSPECTOR ║ ║ Next-Gen Security Scanner ║ ╚══════════════════════════════════════════════════╝ ┌─────┐ ┌─────┐ ┌─────────────┐ ┌─────────┐ │ AST │◄──►│RUST │◄──►│ TAINT FLOW │◄──►│ RESULTS │ │ GEN │ │CORE │ │ ANALYSIS │ │ REPORT │ └─────┘ └─────┘ └─────────────┘ └─────────┘ ▲ │ │ ▼ ┌─────────┐ ┌─────────┐ │ PYTHON │ │ JSON │ │ CLI │ │ HTML │ │ HANDLER │ │ SARIF │ └─────────┘ └─────────┘

Next-Gen Python Security Scanner

High-performance SAST framework powered by Rust, engineered for modern Python development workflows with advanced AI/LLM security scanning capabilities.

Star on GitHub Contribute

240+ Security Rules

45+ AI/LLM Rules

95 GitHub Stars

1 Stable Beta Release

Performance Benchmarks

Independent performance testing demonstrates PySpector's competitive advantages in SAST scanning speed while maintaining comprehensive security analysis.

PERFORMANCE BENCHMARK CHARTS

[SPEED ADVANTAGE]

71% faster scanning than traditional tools through Rust-powered parallel analysis

[SCALABILITY]

Maintains high throughput on large codebases (500k+ lines of code)

[RESOURCE PROFILE]

Optimized for modern multi-core environments with adequate memory allocation

Benchmark Methodology

Performance testing conducted on Debian-based Linux VM (2 cores, 4GB RAM) across 5 major Python repositories (13k-530k lines of code). Average of multiple runs with CPU settling periods. Head-to-head comparison against Bandit and Semgrep using identical configurations.

Core Capabilities

Rust-Powered Performance

Leverages a high-performance Rust core for lightning-fast analysis, avoiding the performance overhead of traditional Python-based tools.

AI/LLM Security

Specialized ruleset with 100+ checks for AI applications, including prompt injection, insecure model loading, and dangerous agent tool usage.

Multi-Layered Analysis

Combines regex pattern matching, AST analysis, and inter-procedural taint analysis for comprehensive vulnerability detection.

CI/CD Integration

Git hooks, cron scripts, and multiple output formats (JSON, HTML, SARIF) for seamless integration into development workflows.

OWASP Coverage

Built-in rules covering OWASP Top 10 vulnerabilities and beyond, with customizable TOML-based rule definitions.

Smart Baseline

Interactive triage mode with baselining capabilities to focus on new and relevant security findings in each scan.

Hybrid Architecture

PySpector combines Python's flexibility with Rust's performance for optimal results.

[ Python CLI ]

Handles arguments, config, and AST generation

[ Rust Core ]

Parallel analysis with call graph construction

[ Results ]

Structured findings with multiple output formats

Quick Start

# Install PySpector
pip install .

# Scan a Python project
pyspector scan /path/to/your/project

# Enable AI/LLM security rules
pyspector scan /path/to/your/project --ai

# Generate HTML report
pyspector scan /path/to/your/project -o report.html -f html

# Scan remote repository
pyspector scan --url https://github.com/username/repo.git

# Interactive triage mode
pyspector triage report.json