{"schema_version":"v0.1","generated_at":"2026-07-13 11:30 UTC","methodology_version":"v4.2","license":"CC BY 4.0 — https://creativecommons.org/licenses/by/4.0/","name":"Deepsec","repo":"vercel-labs/deepsec","display_repo":"","url":"https://github.com/vercel-labs/deepsec","rank":226,"previous_rank":null,"rank_delta":null,"stars":5188,"stars_fmt":"5.2k","forks":309,"forks_fmt":"309","last_push":"2026-07-12","days_ago":1,"weekly_commits":7,"commits_low_confidence":true,"score":70.2,"description":"Deepsec is a security harness for finding vulnerabilities in your codebase powered by coding agents","language":"TypeScript","open_issues":15,"category":"Security & Guardrails","category_rank":6,"npm_package":"","crate_package":"","pypi_package":"","weekly_downloads":null,"dl_source":"","hn_mentions_30d":null,"has_provenance":false,"npm_provenance":null,"pypi_provenance":null,"signed_commits_ratio":1.0,"scorecard_score":4.9,"scorecard_checks":{"Binary-Artifacts":10,"Branch-Protection":3,"CI-Tests":10,"CII-Best-Practices":0,"Code-Review":1,"Contributors":6,"Dangerous-Workflow":10,"Dependency-Update-Tool":0,"Fuzzing":0,"License":10,"Maintained":0,"Packaging":10,"Pinned-Dependencies":6,"SAST":0,"Security-Policy":10,"Signed-Releases":-1,"Token-Permissions":10,"Vulnerabilities":0},"scorecard_scanned_at":"2026-07-13T00:37:47Z","slug":"deepsec","source_note":"","public_actions":null,"mcp_server_support":{"status":"none","confidence":null,"evidence":[]},"external_service_dependencies":{"providers":[],"requires_api_keys":true,"confidence":"low","evidence":[]},"tool_plugin_surface":{"plugin_system":"declared","tool_tags":[],"confidence":"medium","evidence":["README/docs mention a declared plugin/integration surface"]},"package_provenance_drift":{"status":"not_applicable","confidence":null,"summary":"No package source configured","evidence":[]},"evidence_grade":"C","coverage_grade":"C","signal_coverage":0.4,"signal_types":2,"listing_status":"listed","display_listing_status":"listed","display_status_label":"Listed","has_warning":false,"warning_reasons":[],"license_spdx":"Apache-2.0","license_type":"open","license_override":"","trust_score":55.9,"trust_score_v2":55.9,"rank_v2":226,"rank_v2_delta":0,"trust_v2_adjustment":-1.3,"trust_confidence":1.0,"trust_breakdown":{"safety":11.1,"identity":10.8,"transparency":12.7,"maintenance":13.7,"adoption":8.9},"trust_v2_breakdown":{"mcp":0.0,"external_dependencies":-1.0,"tool_plugin_surface":-0.3,"package_provenance_drift":0.0},"pending_signals":false,"trust_credential":{"spec":"https://hvtracker.net/spec/trust-credential/v0.2","version":"0.2","issuer":"hvtracker.net","subject":{"repo":"vercel-labs/deepsec","slug":"deepsec","agent_url":"https://hvtracker.net/agents/deepsec"},"methodology_version":"v4.2","issued_at":"2026-07-13 11:30 UTC","expires_at":"2026-07-20T11:30:40Z","trust_score":55.9,"confidence":1.0,"evidence_grade":"C","dimensions":{"safety":11.1,"identity":10.8,"transparency":12.7,"maintenance":13.7,"adoption":8.9},"listing_status":"listed","evidence_hash":"89c3b755ef946208be8edd7c52544a048ff820147bc3587eeb7c0f99c276cfce","signature":"oee8U7vuWygzy2C3Io4WCU7jepTvbfzh/kx1jAorF/5Y+JsnwcYdPsFDGsoQa+wHZSHCoMIiUlV+6Fp2wIOIBg=="},"history":[{"date":"2026-07-13","rank":226,"score":70.2,"trust_score":55.9,"evidence_grade":"C","stars":5188}],"events":[{"date":"2026-07-13","type":"listed","reason_code":"listed","label":"Newly Listed","short_label":"New","tone":"positive","detail":"First tracked at rank #226"}],"recent_changes":[{"date":"2026-07-13","type":"listed","reason_code":"listed","label":"Newly Listed","short_label":"New","tone":"positive","detail":"First tracked at rank #226"}]}