Detect AI-agent risk signals before you widen repository access.
Paste a file tree, package scripts, workflow names, prompt snippets, or redacted config context. CapitalGuard flags exposure signals and turns them into precautions and a license recommendation.
Runs in the browser against pasted paths and snippets; no private source upload is required.
Detects exposure signals, prioritizes precautions, and recommends the right license path.
Does not prove a repository is safe and does not replace a paid authorized scan.
Keeps secrets out of generated reports by focusing on paths and redacted context.
Browser-side scanner
Paste a file tree or config signals. Keep private source code local.
This scanner detects common AI-agent exposure signals in repository paths, package scripts, docs, prompts, logs, and deployment files. It is a triage tool, not a replacement for the paid authorized scan.
Next step
Turn browser-side triage into an authorized scan and prevention packet.