case file / AppSec

Kuzushi

// Rust ยท AppSec automation

Kuzushi is an agentic application-security scanner that maps code, hunts source-to-sink paths, triages findings, and keeps scan evidence replayable across shell, run, and scan workflows.

open repository all work
Cinematic dark lab visualization of Kuzushi agentic AppSec scanning, evidence traces, and source-to-sink analysis nodes.

Where it fits

ProdSec and AppSec automation for teams that need evidence-backed vulnerability review.

What stands out

  • Modular scanner runtime for DAG-based security pipelines.
  • Agentic triage surfaces that reduce false-positive review load.
  • Replayable artifacts, trace output, and Rust-native operator UI.

Related areas

Kuzushi connects to appsec, sast, agentic-ai, static-analysis, threat-modeling. The source repository carries the code, releases, issues, and documentation trail.