What is AI Security Red Team scanning?

AI Security Red Team scanning is passive static analysis that detects security vulnerabilities specific to AI-powered applications. It identifies issues like prompt injection, tool abuse, missing authentication, and data isolation problems without requiring runtime execution.

How long does an AI security scan take?

Most scans complete in under 60 seconds. The scanner analyzes your codebase statically, so there is no need to deploy or run your application.

What frameworks does the AI security scanner support?

The scanner supports Next.js, FastAPI, Express, Django, LangChain, LlamaIndex, and Vercel AI SDK. Support for additional frameworks is continuously being added.

Does AI security scanning replace manual security reviews?

No. The scanner is designed to complement manual security reviews by automating detection of common AI-specific vulnerabilities. Manual review is still recommended for comprehensive security assurance.

What is SARIF export in AI security scanning?

SARIF (Static Analysis Results Interchange Format) is a standard format for static analysis tools. Exporting to SARIF allows integration with GitHub Code Scanning, Azure DevOps, and other CI/CD platforms.

AI SECURITY STATIC SCANNER

Detect AI Attack Surface
Before Attackers Do

Static code analysis for AI/ML security risks

91 Semgrep rules across 78 display IDs and 12 attack categories. Deterministic, reproducible, SARIF-compatible.

91 Semgrep Rules82 Compliance MappingsSARIF OutputUnder 60 second scans

Semgrep Rules

Compliance Mappings

AI Guessing

100%

Reproducible

⚠️ Critical Risk

AI Systems Have Unique Attack Surfaces

Traditional security scanners miss AI-specific vulnerabilities like prompt injection, RAG poisoning, and tool abuse.

✗

Traditional Security Scanners

Miss AI-specific attack patterns
No prompt injection detection
No RAG poisoning checks
No LLM tool abuse detection

✅

HAIEC AI Static Security Scanner

91 Semgrep rules across 78 display IDs
Prompt injection pattern matching
RAG poisoning detection
Tool abuse and agent safety checks

What We Detect

12 attack categories, 91 Semgrep rules (78 display IDs), 82 compliance mappings across 9 frameworks

Prompt Injection

Critical

User input reaches LLM prompts without validation

Rules:R1.1-R1.7 (7 rules)

Maps to:SOC 2 CC7.2/CC8.1, ISO 27001 A.12.6.1, OWASP LLM01, CWE-77

REST API Detection

Medium

Direct AI REST API calls without SDK wrapper or protection

Rules:R2.1-R2.8 (8 rules)

Maps to:SOC 2 CC7.2/CC8.1, ISO 27001 A.12.6.1, OWASP LLM01

SDK Detection

Info

AI SDK imports detected for system monitoring and change management

Rules:R3.1-R3.5 (5 rules)

Maps to:SOC 2 CC7.2/CC8.1, ISO 27001 A.12.6.1

Dangerous Tool Abuse

Critical

Dangerous tools (PythonREPL, Shell, eval/exec) exposed to AI agents

Rules:R4.1-R4.9 (9 rules)

Maps to:SOC 2 CC6.1/CC7.3, ISO 27001 A.9.2.3, OWASP LLM07, CWE-94

API Key & Secrets Exposure

Critical

Hardcoded API keys, secrets in logs, URLs, or error messages

Rules:R5.1-R5.7 (7 rules)

Maps to:GDPR Art 32, HIPAA 164.312(b), SOC 2 CC6.6, CWE-200

Agent & Advanced Safety

High

Agent loops, recursive calls, missing guardrails, memory injection

Rules:R6.1-R6.10 (10 rules)

Maps to:SOC 2 CC6.1/CC7.2, ISO 27001 A.9.4.1, OWASP LLM09, CWE-674

Data Leakage & Privacy

Critical

PII in prompts, sensitive DB fields, training data leakage

Rules:R7.1-R7.6 (6 rules)

Maps to:GDPR Art 32, HIPAA 164.312(b), SOC 2 CC6.6, CWE-200

RAG & Vector Store Security

High

Unvalidated vector store ops, user-controlled embeddings, metadata injection

Rules:R8.1-R8.6 (6 rules)

Maps to:SOC 2 CC6.1, OWASP LLM03, CWE-20

Production Security & Config

Medium

Missing rate limits, auth, cost tracking, debug mode, error logging

Rules:R9.1-R9.8 (8 rules)

Maps to:SOC 2 CC6.1/CC7.2/CC8.1, ISO 27001 A.9.2.3, CWE-306/CWE-770

Model Security

High

Model extraction, unverified loading, poisoning, weights exposure

Rules:R10.1-R10.5 (5 rules)

Maps to:SOC 2 CC6.1/CC6.6, ISO 27001 A.9.4.1, CWE-494/CWE-200

Injection & XSS via AI Output

High

AI-generated content used unsafely in HTML, SQL, or HTTP requests

Rules:R11.1-R11.3 (3 rules)

Maps to:SOC 2 CC6.1/CC7.2, OWASP A03:2021, CWE-79/CWE-89/CWE-918

Multimodal & Misc

Medium

Image/audio input injection, AI filesystem access, verbose errors

Rules:R12.1-R12.4 (4 rules)

Maps to:SOC 2 CC6.1/CC7.2, OWASP LLM01, CWE-20/CWE-209

System Architecture

How the AI Static Scanner Is Built

Five layers from repo clone to compliance evidence. Source code is ephemeral — always deleted after scan.

Security Blueprint

Repo Handling

Ephemeral clone → delete

Detection

91 rules / 78 display IDs

Compliance

SOC2, ISO, OWASP, CWE

Artifacts

Attestation + Badge + SARIF

Authorization

Extraction

Analysis

Evidence

Output

End-User Process Flow

Your Journey to AI Security Evidence

8 steps from scan initiation to compliance evidence. Source code is ephemeral — never persisted.

STEP 1 OF 8SETUP

Initiate Scan

< 1 min

USER ACTION

What You Do

Provide your GitHub repository URL. Authenticate with your HAIEC account. The scan can be triggered from the dashboard, CI/CD pipeline (GitHub Action), or API.

What the System Does

Scan authorization validates session, checks rate limits, and verifies GitHub access token. Scan intent schema enforced. State machine transitions to authorized.

Output

Authorized scan session with validated repository target

Built for Production AI Security

Enterprise-grade features for teams shipping AI to production. Deterministic, reproducible, audit-ready.

Passive Static Analysis

No runtime execution required. Scans your codebase without deploying or running your application.

Baseline & Diff Tracking

Track security improvements over time. Only alert on new or regressed findings.

SARIF Export

Export findings in SARIF format for GitHub Code Scanning and CI/CD integration.

Trust Page Generator

Generate customer-facing security status pages to build trust with prospects.

Questionnaire Auto-fill

Auto-fill security questionnaires from scan results. Save hours on vendor assessments.

CSM6 Integration

Maps findings to HAIEC CSM6 framework layers for comprehensive AI governance.

Simple, Transparent Pricing

Start free, upgrade when you need more. All plans include core security scanning.

Free

$0/month

Get started with AI security scanning

3 scans per month
Top 5 findings visible
1 baseline
JSON export
Community support

Start Free

Professional

$299/month

For growing teams with AI in production

25 scans per month
All findings visible
5 baselines
SARIF export
1 trust page
Questionnaire auto-fill
10 suppressions
3 GitHub repos
Email support

Start Pro Trial

Business

$999/month

For organizations scaling AI securely

Unlimited scans
All findings visible
Unlimited baselines
SARIF export
Unlimited trust pages
Questionnaire auto-fill
Unlimited suppressions
Unlimited GitHub repos
CI/CD integration
Priority support

Start Business Trial

Frequently Asked Questions

Start Scanning Your AI Code Today

Free scan. No credit card required. Results in minutes.

Detect AI Attack Surface
Before Attackers Do

AI Systems Have Unique Attack Surfaces

Traditional Security Scanners

HAIEC AI Static Security Scanner

What We Detect

Prompt Injection

REST API Detection

SDK Detection

Dangerous Tool Abuse

API Key & Secrets Exposure

Agent & Advanced Safety

Data Leakage & Privacy

RAG & Vector Store Security

Production Security & Config

Model Security

Injection & XSS via AI Output

Multimodal & Misc

How the AI Static Scanner Is Built

Security Blueprint

Authorization & Intake

IR Extraction & Graph Construction

Rule Evaluation & Detection

Evidence & Artifact Generation

Output & Cleanup

Your Journey to AI Security Evidence

Initiate Scan

Built for Production AI Security

Passive Static Analysis

Baseline & Diff Tracking

SARIF Export

Trust Page Generator

Questionnaire Auto-fill

CSM6 Integration

Simple, Transparent Pricing

Free

Professional

Business

Frequently Asked Questions

Start Scanning Your AI Code Today

Detect AI Attack SurfaceBefore Attackers Do

AI Systems Have Unique Attack Surfaces

Traditional Security Scanners

HAIEC AI Static Security Scanner

What We Detect

Prompt Injection

REST API Detection

SDK Detection

Dangerous Tool Abuse

API Key & Secrets Exposure

Agent & Advanced Safety

Data Leakage & Privacy

RAG & Vector Store Security

Production Security & Config

Model Security

Injection & XSS via AI Output

Multimodal & Misc

How the AI Static Scanner Is Built

Security Blueprint

Authorization & Intake

IR Extraction & Graph Construction

Rule Evaluation & Detection

Evidence & Artifact Generation

Output & Cleanup

Your Journey to AI Security Evidence

Initiate Scan

Built for Production AI Security

Passive Static Analysis

Baseline & Diff Tracking

SARIF Export

Trust Page Generator

Questionnaire Auto-fill

CSM6 Integration

Simple, Transparent Pricing

Free

Professional

Business

Frequently Asked Questions

Start Scanning Your AI Code Today

Detect AI Attack Surface
Before Attackers Do