This project is now maintained by the Coalition for Secure AI (CoSAI).
âĄī¸ New Repository: github.com/cosai-oasis/project-codeguard
Please visit the new repository for the latest updates and how to contribute to the project.
rules
Project CodeGuard is an AI model-agnostic security framework and ruleset that embeds secure-by-default practices into AI coding workflows (generation and review). It ships core security rules, transla
Why this rank:Strong adoptionRelease freshnessHealthy release cadence
Description
Project CodeGuard is an AI model-agnostic security framework and ruleset that embeds secure-by-default practices into AI coding workflows (generation and review). It ships core security rules, translators for popular coding agents, and validators to test rule compliance.
README
Release History
| Version | Changes | Urgency | Date |
|---|---|---|---|
| v1.2.0 | ## What's Changed * Update README to use 'skills and rules' terminology consistently by @santosomar in https://github.com/project-codeguard/rules/pull/94 * Fix docs formatting for mkdocs rendering by @thomas-bartlett in https://github.com/project-codeguard/rules/pull/95 * Add MCP (Model Context Protocol) security rule based on CoSAI MCP Security Paper: https://www.coalitionforsecureai.org/ve3-whitepaper-ensuring-the-security-governance-and-safety-of-ai-models/ by @santosomar in https://github | Low | 1/27/2026 |
| 1.1.0 | ## What's Changed * Updated codeguard-1-crypto-algorithms.md rule to include guidance on post quantum cryptography * Updated ClaudeCodeSkills to a more generic class AgentSkills after Agent Skills are adopted as a standard. * Fixed codeguard-1-digital-certificates.md so that the agent does not assume certificate parsing capabilities. * Updated codeguard-0-input-validation-injection.md to include guidance on SOQL . * Added documentation for generating custom rule files. ## New Contributor | Low | 1/22/2026 |
| v1.0.1 | ## What's Changed * Fixed copilot rules frontmatter * Changed `codeguard-1-safe-c-functions` from always-apply to `codeguard-0-safe-c-functions` context-specific rule (C/C++ only) | Low | 10/29/2025 |
| v1.0.0 | Release v1.0.0 | Low | 10/16/2025 |
Dependencies & License Audit
Loading dependencies...
Similar Packages
Secure-Agent-LauncherBlock AI agent access to sensitive macOS paths and log all actions to protect private data during command execution.main@2026-06-03
lad_mcp_serverLad MCP Server: Autonomous code & system design review for AI coding agents (Claude Code, Cursor, Codex, etc.). Features multi-model consensus via OpenRouter and context-aware reviews via Serena.main@2026-05-27
project-codeguardProject CodeGuard is an open-source, model-agnostic security framework that embeds secure-by-default practices into AI coding agent workflows. It provides comprehensive security rules that guide AI asv1.3.1
More in Security
clineAutonomous coding agent right in your IDE, capable of creating/editing files, executing commands, using the browser, and more with your permission every step of the way.
E2BOpen-source, secure environment with real-world tools for enterprise-grade agents.
OpenSandboxSecure, Fast, and Extensible Sandbox runtime for AI agents.
vm0the easiest way to run natural language-described workflows automatically