3 boosters for "sast" — AI-graded, open source, ready to install
A Windsurf IDE rule set that enforces disciplined development practices, emphasizing focused implementation over refactoring, with structured planning and test-driven development workflows.
A Windsurf rules framework for enterprise AWS Cedar authorization with shift-left security practices, policy validation, and automated CI/CD enforcement. Benefits security teams, platform engineers, and developers implementing least-privilege access controls.
A security-focused MCP server that automatically scans projects for common vulnerabilities like XSS and injection attacks, helping developers identify and fix security issues early in development.
