AI Code Security Reviewer

OWASP mapped Multi-language Token download

Paste code → detect common vulnerabilities with severity, confidence, and OWASP mapping. Privacy: this tool does not store your code (processed in-request).

Back to tools

How to use

Choose a language example (Python/JS/PHP/Java/SQL) or paste your own code.
Optionally enable “Aggressive checks”.
Click Review to generate findings + OWASP mapping.
Copy the Markdown report or download JSON (token valid 10 minutes).

Examples included

Python: shell=True, yaml.load, mark_safe, SQLi
JavaScript: innerHTML, eval, Math.random
PHP: unserialize, shell_exec, include($x), SQLi
Java: Runtime.exec, ObjectInputStream, SQLi
SQL: injection pattern + dangerous ops

Paste code

Line numbers enabled. Use the examples dropdown for quick demos.

Language

Load example

Aggressive checks (more false positives)

Include low-severity

Code

Max code size: 50k chars. Paste only relevant snippets for best signal.

Results

Heuristic analysis (best-effort). Always validate with tests + secure review.

Download JSON No report yet

Ready when you are

Choose an example or paste your code, then click Review.