Features
Automated IaC PR reviews for Terraform, Pulumi, CloudFormation
Security misconfiguration detection (exposed secrets, open ports, etc.)
Custom policy-as-code engine (YAML-based)
CIS and SOC2 compliance rule library
Cost optimization suggestions (underutilized resources, right-sizing)
Drift detection between PR and deployed state
Multi-cloud support (AWS, GCP, Azure)
GitHub app integration with inline PR comments
Slack alerts for policy violations
Review history and noise reduction learning
Ephemeral scanning (no storage of IaC files)
Support for private repos on paid plans
Self-hosted deployment option
Audit log export for compliance
Trained exclusively on production code for maintainability
Supports COBOL, Fortran, Verilog, Rust, SQL
Terminal-native CLI with local-to-remote execution
External tool access via MCP
Multi-agent orchestration via Cosine Swarm
Cosine Cloud for parallel tasks and shared projects
Scout model: on-device, post-trained from Devstral 123B
Outpost model: 59.3% on Niche-Bench, post-trained from Kimi K2.6
Frontier model: coming soon for frontier-scale reasoning
Air-gapped deployment option
Managed single-tenant cloud
Credit-based usage metering
CLI built-in search (v1.16)
Lumen Sovereign coalition for sovereign AI