aicoolies logo

MEDUSA

AI-first security scanner for LLM, agent, MCP, and RAG codebases

open-sourceopen sourceupdated Jul 10, 2026
Visit Website →
Share

MEDUSA is an AGPL-3.0 AI-first security scanner from Pantheon Security that checks AI and machine-learning applications, LLM agents, MCP workflows, RAG pipelines, repository-poisoning risks, secrets, and agent-specific compromise patterns.

MEDUSA from Pantheon Security is an AI-focused security scanner for repositories and application workflows that include machine-learning code, LLM integrations, agents, MCP components, or RAG pipelines. Its CLI-oriented workflow is designed to bring AI-specific checks into developer and DevSecOps review paths.

Official project materials highlight detection areas such as prompt injection, MCP vulnerabilities, RAG and repository poisoning, secrets, and compromise patterns involving agent-development environments. Those checks complement conventional scanning by focusing on risks introduced by prompts, retrieval content, tool connections, and AI-oriented project files.

MEDUSA is licensed under AGPL-3.0-or-later, which can affect deployment and redistribution decisions and should be reviewed before organizational adoption. Detection coverage and rule-count claims are point-in-time project claims, and the scanner should complement rather than replace complete SAST, SCA, secrets management, dependency review, and human security testing.

Pricing

Free and open-source under AGPL-3.0-or-later; organizations should review AGPL obligations and validate any commercial support directly with Pantheon Security.

Platforms

Python package and CLI for scanning repositories and AI application code, including LLM, agent, MCP, and RAG security patterns.

Categories

Tags

Use Cases

Related Tools

iFixAi

Open-source diagnostic for AI operational misalignment

iFixAi is an Apache-2.0 diagnostic tool for scoring AI agents and models against operational-misalignment risks such as hallucination, manipulation, sabotage, sandbagging, and oversight evasion.

open-sourceOpen Source

Inspect AI

UK AI Security Institute framework for LLM safety evaluations

Inspect AI is an MIT-licensed framework from the UK AI Security Institute for running large language model evaluations, including tool use, multi-turn dialogue, model-graded scoring, and reusable evaluation tasks.

open-sourceOpen Source

Presidio

Open-source PII detection and anonymization for AI data flows

Presidio is an MIT-licensed privacy framework for identifying and anonymizing personally identifiable information in text, images, and structured data. It can act as a de-identification layer around LLM prompts, logs, RAG corpora, and customer-data workflows.

open-sourceOpen Source
Mergify logo

Mergify

Merge queue, CI insights, flaky-test controls, and stacked pull requests for GitHub teams

Mergify is a pull request automation platform that keeps main branches green with merge queue batching, merge protections, CI Insights, flaky-test detection, and stacked pull requests. Its Stacks workflow turns commits on one local branch into focused PR chains, helping teams review large AI-generated or feature-heavy changes without losing queue safety.

freemium
Terrateam logo

Terrateam

Open-source GitOps automation for Terraform and OpenTofu pull requests

Terrateam is open-source GitOps infrastructure orchestration for Terraform and OpenTofu pull requests. It automates plans and applies in GitHub workflows, supports monorepos and many workspaces, and adds apply-only locks, OPA/Rego policy checks, cost and drift signals, and approval controls without forcing teams into a separate IaC platform.

freemiumOpen Source
Digger logo

Digger

Open-source IaC orchestration that runs Terraform plans and applies from pull request comments

Digger is an open-source infrastructure-as-code orchestration tool for running Terraform and OpenTofu plan/apply workflows from pull request comments. It uses the team’s existing VCS and CI runners instead of adding a separate runner fleet, supports GitHub, GitLab, and Azure DevOps style workflows, and stores PR-level locks and plan cache in the user’s cloud account.

open-sourceOpen SourceTelemetry