AI SummaryCypherFix is an AI agent framework that automates vulnerability detection, triage, and code remediation by analyzing attack surfaces and automatically generating pull request fixes. Security teams and developers benefit from reduced manual pentesting overhead and faster vulnerability remediation cycles.
Install
Copy this and paste it into Claude Code, Cursor, or any AI assistant:
I want to set up the "CypherFix Agents — Vulnerability Triage & Automated Code Remediation" agent in my project. Please run this command in my terminal: # Add AGENTS.md to your project root curl --retry 3 --retry-delay 2 --retry-all-errors -o AGENTS.md "https://raw.githubusercontent.com/samugit83/redamon/master/readmes/README.CYPHERFIX_AGENTS.md" Then explain what the agent does and how to invoke it.
Description
An AI-powered agentic red team framework that automates offensive security operations, from reconnaissance to exploitation to post-exploitation, with zero human intervention.
Overview
CypherFix is RedAmon's automated vulnerability remediation pipeline. It bridges the gap between discovering vulnerabilities (via reconnaissance, DAST scanning, and AI-powered pentesting) and actually fixing them in code. The pipeline consists of two independent AI agents that operate in sequence: • Triage Agent — Analyzes the Neo4j attack surface graph, correlates and deduplicates findings across data sources, prioritizes them using a weighted scoring algorithm, and generates structured remediation entries. • CodeFix Agent — Takes a single remediation entry, clones the target repository, explores the codebase, implements the fix using a ReAct loop, and opens a pull request. Both agents run inside the existing agent container and communicate with the frontend via dedicated WebSocket connections. ---
Architecture Overview
`mermaid flowchart TB subgraph Frontend["Frontend (Next.js Webapp)"] CF_TAB[CypherFixTab] TRIAGE_PROG[TriageProgress] REM_DASH[RemediationDashboard] REM_DETAIL[RemediationDetail] DIFF_VIEW[DiffViewer + ActivityLog] HOOKS[useCypherFixTriageWS\nuseCypherFixCodeFixWS] end subgraph Backend["Backend (FastAPI — agent container)"] WS_TRIAGE["/ws/cypherfix-triage"] WS_CODEFIX["/ws/cypherfix-codefix"] REST_API["REST API\n/api/remediations"] end subgraph TriageAgent["Triage Agent"] T_ORCH[TriageOrchestrator] T_CYPHER[9 Static Cypher Queries] T_LLM[ReAct LLM Analysis] T_TOOLS[query_graph + web_search] end subgraph CodeFixAgent["CodeFix Agent"] C_ORCH[CodeFixOrchestrator] C_LOOP[ReAct While-Loop] C_TOOLS["11 Code Tools\ngithub_read, github_edit,\ngithub_grep, github_bash, ..."] C_GIT[GitHubRepoManager\nclone → branch → commit → PR] end subgraph Data["Data Layer"] NEO4J[(Neo4j Graph DB)] GITHUB[(GitHub Repository)] WEBAPP_DB[(PostgreSQL\nRemediations)] end CF_TAB --> HOOKS HOOKS <-->|WebSocket JSON| WS_TRIAGE HOOKS <-->|WebSocket JSON| WS_CODEFIX WS_TRIAGE --> T_ORCH T_ORCH --> T_CYPHER T_ORCH --> T_LLM T_LLM --> T_TOOLS T_CYPHER --> NEO4J T_TOOLS --> NEO4J T_ORCH -->|POST /api/remediations/batch| WEBAPP_DB WS_CODEFIX --> C_ORCH C_ORCH --> C_LOOP C_LOOP --> C_TOOLS C_LOOP --> C_GIT C_GIT --> GITHUB C_ORCH -->|PUT /api/remediations/:id| WEBAPP_DB REM_DASH -->|GET /api/remediations| REST_API REST_API --> WEBAPP_DB ` ---
Triage Tools
| Tool | Description | Implementation | |------|-------------|----------------| | query_graph | Run follow-up Cypher queries against Neo4j | TriageNeo4jToolManager.run_query() — async Neo4j driver | | web_search | Search the web via Tavily API | TriageWebSearchManager.search() — HTTPS to api.tavily.com |
Table of Contents
• Architecture Overview • End-to-End Workflow • Triage Agent • File Structure • Hybrid Architecture • Phase 1: Static Collection • Phase 2: ReAct Analysis • Phase 3: Persistence • Tools • Prioritization Algorithm • State Model • WebSocket Protocol • CodeFix Agent • File Structure • ReAct Loop Architecture • Orchestrator Workflow • Tool System • Diff Block & Approval Flow • GitHub Integration • State Model • WebSocket Protocol • LLM Provider Routing • Frontend Integration • Configuration Reference • Container & Runtime Environment ---
Discussion
Health Signals
My Fox Den
Community Rating
Sign in to rate this booster