Rethos Security

markdown# Rethos Security — AI Security Brain for Developers

Rethos detects security vulnerabilities in real time as you write code — with AI-powered explanations and one-click auto-fix.

What It Detects

• 🔴 SQL Injection [CRITICAL]
• 🔴 Command Injection [CRITICAL]
• 🟠 Hardcoded Secrets & API Keys [HIGH]
• 🟠 XSS — Cross-Site Scripting [HIGH]
• 🟠 Unsafe Deserialization [HIGH]

How It Works

1. Write code in Python, JavaScript, or TypeScript
2. Rethos flags vulnerabilities instantly with red underlines
3. Click the warning to see the AI explanation
4. One click to apply the secure fix

AI-Powered Explanations

Rethos uses Groq AI (LLaMA 3) to explain:

• What the vulnerability is
• How an attacker would exploit it
• The secure fix with example code

AI is optional — detection and auto-fix work fully offline without any API key.

Commands

• Rethos: Explain Violation — AI explanation of the current issue
• Rethos: Apply Auto-Fix — One-click secure fix
• Rethos: Scan Workspace — Scan all files in your project
• Rethos: Show Security Policy — View all detection rules

Privacy

Your code never leaves your machine. Detection runs 100% locally. AI explanations are optional and use Groq API only when enabled.

Free & Open

Free for individual developers. Built by a security researcher who was tired of finding the same preventable bugs in production code.