MCP-Native · 58 Patterns · 20 Quality Detectors · 269 Secret Rules

AI Code Safety
for the MCP Era

ailinter scans your AI-generated code for quality issues, hardcoded secrets, and security vulnerabilities — before they reach production. Built natively for the Model Context Protocol. Works with Claude, OpenCode, and Cursor.

Get Started — It's Free ⭐ on GitHub

Install in 30 seconds

# macOS (Homebrew)
brew install ailinter/ailinter/ailinter

# Go install
go install github.com/ailinter/ailinter/cmd/ailinter@latest

# Or download from github.com/ailinter/ailinter/releases

MIT licensed. 15MB binary. Zero dependencies. No signup required.

Setup Your AI Agent — One Command

Initialize ailinter with MCP configs, agent instructions, sub-agents, skill files, and git hooks — for every tool you use.

# Interactive setup (recommended)
ailinter init

# Non-interactive: configure specific agents
ailinter init --agent all --vscode --hook
OpenCode
sub-agent + skill + MCP
Claude Code
CLAUDE.md + MCP
Cursor
rules + MCP
Copilot
instructions

Creates .githooks/pre-commit, .vscode/tasks.json, threshold profiles, and more. Full setup guide →

terminal — ailinter check . --format markdown
## app.py
Language: python | Lines: 45 | Score: 82/100 → Go Ahead

### Code Quality (1 issue)
deep_nesting (warning): Nesting depth 4 at line 32

### Vulnerability Scan (2 findings)
pickle_deserialization (critical): line 15 — can execute arbitrary code
eval_injection (critical): line 28 — use ast.literal_eval() instead

### Secret Scan
Clean — no secrets detected

Files: 12 | Go Ahead: 9 | Care: 2 | Needs Work: 1 | Stop: 0
Vulnerabilities: Clean (0 findings)

Three Scanners. One Binary. Zero Dependencies.

Everything you need to keep AI-generated code safe and maintainable.

Code Quality

20 detectors: deep nesting, brain methods, bumpy roads, complex conditionals, duplication, cohesion, primitive obsession, long switches, global data, and more. Every file scored 0–100 with AI-friendly refactoring guidance.

Secrets Detection

269 betterleaks rules + 150 gitleaks fallback. AWS keys, Stripe tokens, GitHub PATs, private keys, JWT, Slack tokens, and more. All secrets redacted in MCP output — never leaked to AI context.

Vulnerability Scanning

58 patterns, 6 categories: injection, XSS, deserialization, weak crypto, XXE, and workflow. Covers Python, Go, JS/TS, Java, C#, PHP. Line-level reporting with human-readable descriptions and fix reminders.

MCP SERVER · STDIO TRANSPORT · 7 TOOLS

Runs Where Your AI Agent Runs

ailinter is an MCP server with 7 tools — AI coding assistants invoke it directly via stdio. No daemon, no API key, no cloud dependency. Everything is local, fast, and private.

analyze_code
scan_for_secrets
assess_file
get_refactoring
set_config
get_config
list_hotspots
Claude| OpenCode| Cursor| Continue.dev| Zed

Code Quality Tiers

80–100Go Ahead — safe to modify freely
60–79Proceed with Care — small isolated changes
40–59Needs Work — refactor incrementally
0–39Stop & Refactor — fix before touching

Vulnerability Tiers

CleanNo vulnerabilities detected
MonitorWarning-level patterns — review
RemediateAlert/critical — fix before continuing
58
Vulnerability Patterns
269+
Secret Detection Rules
20
Quality Detectors
15 MB
Single Binary

Stay updated

New features, vulnerability patterns, and Pro tier launch. No spam.