← all formulae

cycode

brew install cycode v3.16.2 MIT

Python CLI for scanning repositories with SAST, SCA, secrets detection, and IaC misconfiguration checks.

Why you might care

Integrates multiple security scans (static analysis, dependency vulnerabilities, exposed secrets, infrastructure-as-code issues) into a single tool, reducing the need to chain separate scanners. Works as a pre-commit hook for CI/CD pipelines and includes an MCP server mode for AI-assisted security workflows. Useful for developers who want shift-left security without maintaining separate tooling.

Categories

security scanner sast

Alternatives

Semgrep Snyk TruffleHog Checkov GitGuardian

4.0k

30-day installs · #699

11.8k

90-day · #746

18.3k

365-day · #1108

99

★ GitHub stars · updated 3d ago

Runtime dependencies

certifi cryptography libyaml pydantic python@3.14 rpds-py

GitHub topics

code cycode sast sca secrets secure security

Links

https://github.com/cycodehq/cycode-cli
GitHub: cycodehq/cycode-cli
Brew formula source: Formula/c/cycode.rb

Blurb generated by claude-haiku-4-5 on today.

Raw metadata

{
  "aliases": [],
  "alternatives": [
    "Semgrep",
    "Snyk",
    "TruffleHog",
    "Checkov",
    "GitGuardian"
  ],
  "build_dependencies": [],
  "categories": [
    "security",
    "scanner",
    "sast"
  ],
  "caveats": null,
  "conflicts_with": [],
  "dependencies": [
    "certifi",
    "cryptography",
    "libyaml",
    "pydantic",
    "python@3.14",
    "rpds-py"
  ],
  "deprecated": 0,
  "deprecation_reason": null,
  "desc": "Boost security in your dev lifecycle via SAST, SCA, Secrets \u0026 IaC scanning",
  "disable_reason": null,
  "disabled": 0,
  "enrichment_fetched_at": "2026-06-20T23:36:47+00:00",
  "first_seen": "2026-06-20T23:34:18+00:00",
  "full_name": "cycode",
  "github_default_branch": "main",
  "github_last_commit_at": "2026-06-17T07:15:39Z",
  "github_readme_excerpt": "# Cycode CLI User Guide\n\nThe Cycode Command Line Interface (CLI) is an application you can install locally to scan your repositories for secrets, infrastructure as code misconfigurations, software composition analysis vulnerabilities, and static application security testing issues.\n\nThis guide walks you through both installation and usage.\n\n# Table of Contents\n\n1. [Prerequisites](#prerequisites)\n2. [Installation](#installation)\n    1. [Install Cycode CLI](#install-cycode-cli)\n        1. [Using the Auth Command](#using-the-auth-command)\n        2. [Using the Configure Command](#using-the-configure-command)\n        3. [Add to Environment Variables](#add-to-environment-variables)\n            1. [On Unix/Linux](#on-unixlinux)\n            2. [On Windows](#on-windows)\n    2. [Install Pre-Commit Hook](#install-pre-commit-hook)\n3. [Cycode CLI Commands](#cycode-cli-commands)\n4. [MCP Command](#mcp-command-experiment)\n    1. [Starting the MCP Server](#starting-the-mcp-server)\n    2. [Available Options](#available-options)\n    3. [MCP Tools](#mcp-tools)\n    4. [Usage Examples](#usage-examples)\n    5. [Advanced Configuration](#advanced-configuration)\n5. [Platform Command](#platform-command-beta)\n    1. [Discovering Commands](#discovering-commands)\n    2. [Examples](#platform-examples)\n    3. [Notes \u0026 Limitations](#platform-notes--limitations)\n6. [Scan Command](#scan-command)\n    1. [Running a Scan](#running-a-scan)\n        1. [Options](#options)\n           1. [Severity Threshold](#severity-option)\n           2. [Monitor](#monitor-option)\n           3. [Cycode Report](#cycode-report-option)\n           4. [Package Vulnerabilities](#package-vulnerabilities-option)\n           5. [License Compliance](#license-compliance-option)\n           6. [Lock Restore](#lock-restore-option)\n           7. [Stop on Error](#stop-on-error-option)\n        2. [Repository Scan](#repository-scan)\n            1. [Branch Option](#branch-option)\n        3. [Path Scan](#path-scan)\n            1. [Terraform P",
  "github_repo": "cycodehq/cycode-cli",
  "github_stars": 99,
  "github_topics": [
    "code",
    "cycode",
    "sast",
    "sca",
    "secrets",
    "secure",
    "security"
  ],
  "homepage": "https://github.com/cycodehq/cycode-cli",
  "homepage_og_description": null,
  "homepage_og_image": null,
  "homepage_title": null,
  "installs_30d": 4028,
  "installs_365d": 18292,
  "installs_90d": 11796,
  "keg_only": 0,
  "keg_only_reason": null,
  "last_seen": "2026-06-20T23:34:18+00:00",
  "license": "MIT",
  "llm_generated_at": "2026-06-20T23:46:29+00:00",
  "llm_model": "claude-haiku-4-5",
  "name": "cycode",
  "oldnames": [],
  "one_liner": "Python CLI for scanning repositories with SAST, SCA, secrets detection, and IaC misconfiguration checks.",
  "optional_dependencies": [],
  "rank_30d": 699,
  "rank_365d": 1108,
  "rank_90d": 746,
  "raw_hash": "e923343fbcd68ec4",
  "recommended_dependencies": [],
  "revision": 0,
  "ruby_source_path": "Formula/c/cycode.rb",
  "tap": "homebrew/core",
  "test_dependencies": [],
  "uses_from_macos": [],
  "version_head": "HEAD",
  "version_stable": "3.16.2",
  "versioned_formulae": [],
  "why_use_this": "Integrates multiple security scans (static analysis, dependency vulnerabilities, exposed secrets, infrastructure-as-code issues) into a single tool, reducing the need to chain separate scanners. Works as a pre-commit hook for CI/CD pipelines and includes an MCP server mode for AI-assisted security workflows. Useful for developers who want shift-left security without maintaining separate tooling."
}