Features
Semantic code understanding to find logic-based vulnerabilities
End-to-end verification with working proof-of-concept exploits
PR security reviews on pull requests
Automated threat modeling from real architecture
Business impact prioritization beyond CVSS
Context-aware scanning (codebase, infra, auth flows)
Open-source model only (no proprietary dependency)
Multi-stack support (JS, TS, Python, Go, Java, Ruby, Next.js, Django, Flask, Rails, Express, FastAPI)
Compliance report generation (Pro+)
Custom project context (Pro+)
Basic Software Composition Analysis (SCA)
AI Assistant for security questions
Laguna XS.2 model (33B params, 3B active, on-device)
Laguna M.1 model (225B params, 23B active, via API)
256K context length for multi-step reasoning
Multi-agent orchestration with planning and tool use
Sandboxed agent execution environments
Developer surfaces: agents, TUI, IDE extensions, binaries
Custom foundation models deployed on-prem or in VPC
Data connectors to repos, databases, data warehouses
Role-based access control for humans and agents
Executive-grade governance and auditability
On-prem, VPC, and workstation deployment (defense only)
Forward Deployed Research Engineers embed with teams
Real-time observability with end-to-end traces
Air-gapped network support
Open-weight model weights available