Static analysis engine for AI-generated code reliability, security, and CI gating

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for upendra.manike from gravatar.com upendra.manike

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License Expression: MIT
    SPDX License Expression
  • Author: DevGuard Contributors
  • Tags static-analysis , code-security , sarif , devsecops , ci , ai-generated-code , python-cli
  • Requires: Python >=3.10
  • Provides-Extra: dev
Classifiers
Report project as malware

Project description

devguard-core

devguard-core is a Python static analysis engine for security and reliability checks in application code.

It is designed for local developer workflows, CI pull request gates, and SARIF-based security tooling.

Install

python -m pip install devguard-core

Features

  • Rule metadata model (id, severity, match_type, description, fix)
  • File walker with language detection
  • Built-in checks for common AI-code risks
  • AST-backed Python checks for SQL injection, unsafe deserialization, and hardcoded secrets
  • JSON and SARIF output
  • Baseline input/output for incremental CI rollout

Built-In Rules

  • DG001: potential SQL injection patterns
  • DG002: potential unsafe deserialization calls
  • DG003: potential hardcoded secrets
  • DG004: potential expensive allocations in loops
  • DG005: potential async/network calls without local error handling

Quick Run

devguard-core scan ./src --format json

Scan with CI-friendly filters:

devguard-core scan ./src --min-severity medium --min-confidence 0.7 --format sarif --output devguard.sarif

Scan changed files only:

git diff --name-only --diff-filter=ACMR origin/main...HEAD > changed-files.txt
devguard-core scan . --file-list changed-files.txt --format json

Baseline workflow:

devguard-core scan ./src --baseline-out .devguard-baseline.json --format json
devguard-core scan ./src --baseline-in .devguard-baseline.json --format json

Output Formats

  • json: machine and script friendly output
  • sarif: GitHub Code Scanning and security platform integration

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for upendra.manike from gravatar.com upendra.manike

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License Expression: MIT
    SPDX License Expression
  • Author: DevGuard Contributors
  • Tags static-analysis , code-security , sarif , devsecops , ci , ai-generated-code , python-cli
  • Requires: Python >=3.10
  • Provides-Extra: dev
Classifiers

Release history Release notifications | RSS feed

This version

0.1.3.post1

0.1.3

0.1.2

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

devguard_core-0.1.3.post1.tar.gz (13.7 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

devguard_core-0.1.3.post1-py3-none-any.whl (14.3 kB view details)

Uploaded Python 3

File details

Details for the file devguard_core-0.1.3.post1.tar.gz.

File metadata

  • Download URL: devguard_core-0.1.3.post1.tar.gz
  • Upload date:
  • Size: 13.7 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/6.1.0 CPython/3.13.7

File hashes

Hashes for devguard_core-0.1.3.post1.tar.gz
Algorithm Hash digest
SHA256 7b67dee12138f11b60f9a6de107aaacfd7136ae575c01bb9a4a3fcd73a4e0ec7
MD5 174b3ed6cc1a0f13c92a6895650fe052
BLAKE2b-256 774bb1b0ff64aac852b141ee1577dabdd4b2a75eb827488e0bcc2a5d4a467087

See more details on using hashes here.

File details

Details for the file devguard_core-0.1.3.post1-py3-none-any.whl.

File metadata

File hashes

Hashes for devguard_core-0.1.3.post1-py3-none-any.whl
Algorithm Hash digest
SHA256 024f0f2c4b0ea80cbe4fe26e0d54037f5f5b5d201d5718b10885608d8afc7581
MD5 f4557c261afd008ae769837d48806dd9
BLAKE2b-256 f8c297bea7f78c1b4f3858ca19b6baef4fc07d09c1986445d2eac438afee6f59

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page