Getting Started

Running in under 2 minutes

Run one command — no signup needed

The free tier works instantly with zero registration. Run npx safeweave-mcp and start scanning. 3 scanners (SAST, Secrets, Dependencies), unlimited local scans, no license key required. Sign up later only if you want to unlock all 8 scanners or track trends.

shell
# Just run it — no signup, no license key, no config
$ npx safeweave-mcp

# That's it. Free tier scans locally with:
#   ✓ SAST (Semgrep/Opengrep)
#   ✓ Secrets (Gitleaks)
#   ✓ Dependencies (npm audit, pip-audit, etc.)
#
# Want all 8 scanners? Add a license key later:
# SAFEWEAVE_LICENSE_KEY=sw_shpro_xxx

Connect your editor

Add SafeWeave as an MCP server in your AI editor of choice. Set your license key as an environment variable and you are ready to scan.

json
# Claude Code
$ claude mcp add safeweave \
    -e SAFEWEAVE_LICENSE_KEY=sw_live_xxx \
    -- npx -y safeweave-mcp

# Cursor — .cursor/mcp.json
{
  "mcpServers": {
    "safeweave": {
      "command": "npx",
      "args": ["-y", "safeweave-mcp"],
      "env": { "SAFEWEAVE_LICENSE_KEY": "sw_live_xxx" }
    }
  }
}

# VS Code — .vscode/mcp.json
{
  "servers": {
    "safeweave": {
      "command": "npx",
      "args": ["-y", "safeweave-mcp"],
      "env": { "SAFEWEAVE_LICENSE_KEY": "sw_live_xxx" }
    }
  }
}

Ask your AI to scan

Just type a natural-language prompt. SafeWeave handles the rest — SAST, secrets, and dependency scanning run locally on your machine. Your code never leaves your device.

shell
> "Scan this project for security vulnerabilities"
> "Check for hardcoded secrets and leaked API keys"
> "Run a dependency audit on this repo"
> "How secure is this codebase? Give me a score."

  [scanning] 3 scanners running in parallel...

  ✓ SAST          2 findings  (1 high, 1 medium)
  ✓ Secrets       1 finding   (1 critical — API key in config.ts)
  ✓ Dependencies  3 findings  (1 high, 2 medium)

  Score: 78/100  ► 6 findings (1 critical, 2 high, 3 medium)

Upgrade for more power

Self-Hosted Pro ($15/mo) unlocks all 8 scanners, compliance profiles, and a local dashboard — everything runs on your machine. Need team features? Cloud plans add hosted dashboards, trend tracking, and AI-suggested fixes.

shell
# Self-Hosted Pro: all 8 scanners + dashboard
# Same license key, just upgrade at safeweave.dev

  ✓ SAST          ✓ IaC          ✓ License
  ✓ Secrets       ✓ Container    ✓ Posture
  ✓ Dependencies  ✓ DAST

# Compliance profiles included:
  Standard · Hardened · OWASP
  SOC 2 · PCI-DSS · HIPAA

Ready to secure your code?

Start Scanning Free — No Card NeededRead the docs →