npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@eastagile/claude-scan

v1.2.0

Published

Anthropic's vulnerability scanning scaffold (Carlini, [un]prompted 2026) — parallel Claude Code security scans per file

Downloads

75

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

quanhdevquanhdev

Keywords

claude-scanclaude-codeanthropicvulnerability-scannercode-securitysastsecurityai-securitycarlini

Readme

claude-scan

Open-source implementation of Anthropic's vulnerability scanning scaffold from Nicholas Carlini's [un]prompted 2026 talk — the method that found a 23-year-old Linux kernel bug.

Scans every source file in a project for security vulnerabilities using parallel Claude Code processes. Each file gets its own focused context window. Produces per-file vulnerability reports and an aggregated summary.

Background

At [un]prompted 2026, Anthropic researcher Nicholas Carlini showed that a surprisingly simple scaffold — claude -p "You are playing in a CTF. Find a vulnerability. hint: look at <file>" — can find critical zero-days in production software, including a 23-year-old Linux kernel bug and the first critical CVE in Ghost CMS.

The key to scaling this across a codebase is a one-line addition: hint: look at <file>, iterated over every source file in the project. Anthropic described this approach in their red team blog post but did not publish the tooling.

claude-scan is the open-source implementation of that scaffold. It handles the boring parts — file discovery, parallel process management, crash recovery, progress display — so the model can do what it's good at.

Install

npm install -g @eastagile/claude-scan

Prerequisites:

  • Node.js 18+
  • Claude Code installed and authenticated (claude auth login)

Quick Start

The target directory defaults to the current directory — run from inside your project:

cd ~/code/my-project

# Scan (default: current directory)
claude-scan

# Preview what files would be scanned
claude-scan --dry-run

# Scan with 8 parallel workers
claude-scan -j 8

# Only scan Python files
claude-scan --include "*.py"

# Resume after crash or Ctrl+C
claude-scan --resume

# Retry failed/timed-out files (implies --resume)
claude-scan --retry

# Re-generate summary from existing reports
claude-scan --summarize
claude-scan --summarize --model claude-sonnet-4-6

# Or pass a path explicitly
claude-scan /path/to/project

How It Works

discover files → queue them → spawn N claude -p processes → collect reports
  1. Discovergit ls-files (respects .gitignore) or recursive directory walk, filtered by extension, file size, binary content, and test file patterns. Test files are excluded by default (--include-tests to opt in). No LLM calls are spent on filtering.
  2. Fan out — spawns up to N claude --dangerously-skip-permissions -p "<prompt>" processes in parallel, each analyzing one file.
  3. Monitor — tracks progress, handles timeouts (default 30 min per file), saves state atomically for crash recovery.
  4. Summarize — spawns one final Claude process that reads all per-file reports, deduplicates issues across files, ranks by severity, and writes summary.md with links to each report.

Each Claude invocation uses the exact prompt from Carlini's scaffold:

You are playing in a CTF.
Find a vulnerability.
hint: look at <file>
Write the most serious one to <report>.

Output

Results go to .claude-scan/ in the target directory (or --output <dir>):

.claude-scan/
├── summary.md          # Findings aggregated by severity
├── state.json          # Scan state (enables --resume)
├── reports/            # One markdown report per scanned file
│   ├── src__auth__login.ts.md
│   └── src__db__queries.py.md
└── logs/               # Full conversation log per file (JSONL: prompt + stream-json events)

Options

  -j, --parallel <n>        Parallel workers            (default: 12)
  -t, --timeout <seconds>   Per-file timeout            (default: 1800)
      --resume               Resume pending files from a previous scan
      --retry                Resume + also retry failed/timed-out files
      --include-tests        Include test files (excluded by default)
      --summarize            Re-generate AI summary from existing reports
      --include <glob>       Only scan matching files
      --exclude <glob>       Skip matching files
  -o, --output <dir>        Output directory             (default: .claude-scan)
      --model <model>        Claude model to use
      --max-turns <n>        Max Claude turns per file    (default: 100)
      --max-file-size <kb>   Skip files larger than       (default: 100)
      --retries <n>          Max retries per file         (default: 2)
      --dry-run              List files without scanning
      --prompt <file>        Custom prompt template
  -v, --verbose              Verbose output
      --force                Override scan lock

Crash Recovery

State is saved atomically (write temp file → fsync → rename) after every file completes and every 30 seconds. If the process crashes, is killed, or you hit Ctrl+C:

claude-scan --resume

Completed files are never re-scanned. Files that were mid-scan reset to pending.

If you run claude-scan on a repo with an incomplete previous scan, it will prompt:

Previous scan found: 42/66 completed. Resume previous scan? [y/N]

To also retry files that failed or timed out:

claude-scan --retry

Signal handling:

  • 1st Ctrl+C — stops the queue, waits for running scans to finish
  • 2nd Ctrl+C — kills all workers immediately, saves state, exits

If the API rate limit is hit, the scan pauses automatically and retries every 15 minutes until the limit clears — no manual intervention needed.

The tool prints actionable hints at exit when files are pending or failed.

Custom Prompts

Create a template with {{FILE_PATH}} and {{REPORT_PATH}} placeholders:

You are a security auditor.
Analyze {{FILE_PATH}} for OWASP Top 10 vulnerabilities.
Write a detailed report to {{REPORT_PATH}}.
claude-scan --prompt my-prompt.md

Security Warning

This tool runs Claude Code with --dangerously-skip-permissions. Claude can execute arbitrary commands in the target directory without confirmation.

  • Run in a container or VM. Docker with --network none is ideal.
  • Run on a clean checkout. Don't scan repos with secrets, credentials, or .env files.
  • The default prompt finds and reports vulnerabilities. It does not attempt exploitation, but Claude has full tool access.

Architecture

See ARCHITECTURE.md for a guide to the codebase. Detailed design docs with Mermaid diagrams are in docs/architecture/.

License

MIT — see LICENSE.