AgentIndex icon
AgentIndex
ToolsCategoriesTrendingNewCompare
Submit Tool
Home/
Observability/
code-pathfinder
code-pathfinder logo

code-pathfinder

Active·★ 135·AGPL-3.0·Updated 2026-05-29
★ Trending★ Code Assistant★ Security & Safety

AI-Native Static Code Analysis for modern security teams. Built for finding vulnerabilities, advanced structural search, derive insights and supports MCP

Code Pathfinder is an open-source, AI-native static code analysis tool that builds a queryable graph of your codebase for security teams. It uses AST, CFG, and DFG to trace data flows across multiple languages and provides context-aware vulnerability detection and triage.

#AI-Native Security#Static Code Analysis (SAST)#Vulnerability Scanner#Data Flow Analysis#Code Graph#CI/CD Security#Developer Tools#Python Security
$ Install
$ pip install codepathfinder
↗ Visit site★ GitHub
01

Features

01Structural code analysis using AST, CFG, and DFG to find exploit paths.
02AI-powered vulnerability triage and context-aware validation with LLMs.
03Unified data flow tracing across multiple languages (Python, Docker, Docker Compose).
04Flexible deployment as IDE extension, CLI tool, or integrated into CI/CD pipelines.
02

Compatibility

Python
Language
Verified via docs
Docker
Configuration Language
Verified via docs
Docker Compose
Configuration Tool
Verified via docs
Linux
Operating System
Verified via docs
macOS
Operating System
Verified via docs
Windows
Operating System
Verified via docs
03

Quick start

1
$ pip install codepathfinder
04

Use cases

↳Detect CVEs and conduct vulnerability research by understanding dependency usage and attack surfaces.
↳Provide deep code intelligence (call graphs, data flows) to AI coding assistants like Claude.
↳Perform in-editor security checks to catch vulnerable patterns during code writing.
↳Integrate into CI/CD pipelines for automated security scanning with SARIF output.
05

Alternatives

GitHub MCP Server logo
GitHub MCP Server★ 30.3k
GitHub's official MCP Server. Allows AI agents to interact directly with your GitHub repositories (read files, search code, issues).
vs →
genai-toolbox logo
genai-toolbox★ 15.4k
MCP Toolbox for Databases is an open source MCP server for databases.
vs →
Context7 logo
Context7★ 56.4k
MCP Server that provides up-to-date code documentation for LLMs and AI code editors.
vs →
CopilotKit logo
CopilotKit★ 31.8k
React UI + elegant infrastructure for AI Copilots, AI chatbots, and in-app AI agents. The Agentic Frontend.
vs →
Figma-Context-MCP logo
Figma-Context-MCP★ 14.9k
MCP server to provide Figma layout information to AI coding agents like Cursor
vs →
pal-mcp-server logo
pal-mcp-server★ 11.6k
The power of Claude Code / GeminiCLI / CodexCLI + [Gemini / OpenAI / OpenRouter / Azure / Grok / Ollama / Custom Model / All Of The Above] working as one.
vs →
E2B logo
E2B★ 12.4k
Open-source, secure environment with real-world tools for enterprise-grade agents.
vs →
devin.cursorrules logo
devin.cursorrules★ 6.0k
Magic to turn Cursor/Windsurf as 90% of Devin
vs →
See all alternatives →

Related searches

code-pathfinder AlternativesBest Observability Tools 2026Open Source Observabilitycode-pathfinder Tutorialcode-pathfinder Vs CompetitorsAI-Native SecurityStatic Code Analysis (SAST)Vulnerability Scanner

Comments

Log in to leave a comment
  • R
    Remy HarrisMay 17, 2026

    Works with the major programming languages and frameworks.

  • S
    Sutton KimApr 30, 2026

    AI-native static analysis for finding vulnerabilities in modern codebases.

  • E
    Ellis MartinezApr 25, 2026

    Static analysis combined with AI reduces false positives that tools alone generate.

  • O
    Oakley KimMar 31, 2026

    Good for security teams who want AI-assisted vulnerability discovery.

On this page
01Features02Compatibility03Quick start04Use cases05Alternatives
Stats
GitHub Stars★ 135
Last commit1d ago
StatusActive
LicenseAGPL-3.0
CategoryObservability
Trend (30d)
+5.4↑ 0.8%
Links
Documentation↗Discussion↗Issues↗Releases↗

Deploy on DigitalOcean — Get $200 Free Credit

Ad
© 2026 AgentIndex.app|Built by a 10-year iOS Developer.
QYSGitHubBuy me a coffee ☕

Browse by Category

Code AssistantWorkflow AutomationRAG / Knowledge BaseMulti-AgentBrowser AutomationLLM InfraDev ToolingObservability

Not affiliated with Anthropic, OpenAI or Microsoft.