BridgeMindbridgemind.ai viewers: Get Snitch free $49.99 $0

changelog

What's new.

Every category. Every feature. Every release.

v7.1.0April 16, 202668 categories

8 new security categories

What's new

  • ReDoS — finds regex patterns that can hang your server on crafted input
  • Prototype Pollution — catches __proto__ and deep-merge attacks through user JSON
  • JWT Algorithm Attacks — detects algorithm confusion and signature bypass patterns
  • Cloud Metadata SSRF — flags outbound fetches that could leak AWS/Azure/GCP credentials
  • Insecure Deserialization — covers Python pickle, Java object streams, Ruby Marshal, PHP unserialize, unsafe YAML
  • Typosquatting & Install Scripts — catches lookalike package names and suspicious postinstall hooks
  • Type Coercion Bypasses — finds loose equality in auth checks, password comparisons without constant-time
  • Agent Prompt Injection — looks for RAG and tool-use patterns that let untrusted data steer the model

All plans get every category

  • Free, Base, Pro, and Enterprise now all include every security category
  • Upgrade if you need more rulesets, projects, or higher limits — not for category access

Mythos

  • Snitch for Claude Mythos now totals 74 categories

How to upgrade

  • Run the install command from your original purchase email — it fetches the latest version
  • Or download the new ZIP from your license page and re-run the installer
v7.0.0April 9, 202660 categories

30+ Tools, Agent Skills Standard, Mythos Client, Open Source Program

30+ Tool Support

  • Adopted the Agent Skills open standard (agentskills.io)
  • Compatible with 30+ AI coding tools: Claude Code, Codex CLI, Cursor, VS Code, GitHub Copilot, Gemini CLI, Goose, Junie, Amp, Kiro, TRAE, and 20 more
  • Universal install paths: ~/.agents/skills/ and ~/.claude/skills/

Mythos Client (66 Categories)

  • Dedicated client for Claude Mythos with deep reasoning analysis
  • All 60 categories rewritten with Deep Analysis sections
  • 6 new categories: Business Logic Chains, Cryptographic Depth, Exploit Chains, Contextual Severity, Error Handling (OWASP A10:2025), ASVS Gaps
  • Reasoning rules replace anti-hallucination rules
  • Real-time exploit chain detection during scanning
  • Contextual severity based on defense depth and practical exploitability

New Pricing

  • $49.99 founder price, normally $99.99 — works with all 30+ tools
  • Simplified checkout — one-time purchase, every tool included

Open Source Program

  • Free Snitch for open source maintainers at /opensource
  • Apply with your repo link — approved applicants get the full plugin by email

Website

  • New pages: About, Contact, Docs, Status, Blog, Open Source
  • Redesigned Features and Compare pages
  • Consistent design across the entire site
v2.0.0March 23, 202660 categories

60 Security Categories, Watchdog Mode, References Architecture

New Categories (47–60)

  • CSRF protection validation
  • Race conditions & concurrency
  • XXE & XML attacks
  • Timing attack detection
  • Debug endpoints in production
  • Secrets rotation lifecycle
  • CCPA & SOX compliance
  • OAuth/OIDC deep security
  • Microservices & service mesh
  • WebSocket security
  • GraphQL deep analysis
  • Message queue security
  • Backup & recovery security
  • Audit log integrity

Watchdog Mode

  • Real-time security monitoring — auto-scans every code change
  • Enable with "snitch watch", disable with "snitch unwatch"

False Positive Prevention

  • Two-pass verification with 30-line context window
  • Auto-exclude test paths, node_modules, dist, build, coverage
  • Framework-aware context checks
  • Confidence thresholds (High/Medium/Low per finding)
  • Inline ignores and .snitch-ignore file

Exports & Integrations

  • SARIF 2.1.0 export for GitHub code scanning
  • CSV export for spreadsheets
  • Ticketing: Jira, Linear, GitHub Issues, GitLab
  • CycloneDX 1.5 SBOM generation from lockfiles
v1.5.0March 20, 202646 categories

Installer for 14 Tools, Fingerprint System

Smart Installer

  • Auto-detects 14 AI coding tools
  • Windows PowerShell installer support
  • Colorized output with progress indicators

Platform

  • Fingerprint system for unique install tracking
  • Bridge page for BridgeMind AI integration
v1.4.0March 18, 202645 categories

Expand to 45 Categories, GitLab CI, Auto-Fix

New Categories (41–46)

  • License Compliance, Container & Docker, IaC Security
  • API Security, AI Tool Supply Chain, AI/LLM App Security

Features

  • GitLab CI integration
  • Auto-fix capability with user confirmation
  • Scan history tracking and comparison
v1.0.0March 10, 202640 categories

Initial Release

Launch

  • 40 security categories
  • Evidence-based findings with file path, line number, exact code
  • Interactive scan selection menu
  • Standalone plugin distribution