Live scan

Pick your stack. Watch its blast radius.

A real, pre-computed scan of a public agent framework — watch it map every place untrusted input could reach a real action.

WHAT YOU’RE WATCHING
1INSTALL

A developer runs pip install. The framework is now inside their agent — with all the power it ships with.

2MAP

We trace every path where untrusted input — a web page, an email, a doc — could reach a real action: the exec calls, the sends, the system writes.

3BLAST RADIUS

We count what one compromised agent could actually do. That number is the blast radius.

▸ Below is that scan, replayed on a real public framework. Pick one and watch.

THE SCAN
▸ PICK A FRAMEWORK YOU BUILD ON
hermes-shield — scan~/cua main*

Replaying a real pre-computed scan of a public framework. We never run your private code — the real scan is a local CLI + a human.

HOW THE REAL SCAN DIFFERS

This was a replay of a pre-computed scan on a public, open-source repo — on a pinned commit. Your real scan is run by a human on our local CLI, never in your browser and never on this page. We under-report by design: we only count what we can prove reachable.

REQUEST A TOOL AUDIT

Don’t See
Your Stack?

Drop any public GitHub repo. A human runs the real scan on our local CLI, maps its blast radius, and adds it to the board — then emails you the report.

Public repos only. A human runs the real scan on our local CLI — we’ll email you the report.

Pixel-art castle bearing the Hermes Shield crest