Show HN: Tharos – CLI to find and autofix security bugs using local LLMs
github.comOP here. We built Tharos because we were tired of "security theatre" tools that produce read-only reports.
Tharos is an open-source security engine written in Go. Key features:
Polyglot: Scans Go, Python, JS/TS (AST-based + Regex). Interactive: tharos --interactive opens a TUI to fix issues one-by-one. CI-Ready: Returns strict exit codes for blocking builds. Visual: HTML reports and rich terminal UI. Repo: https://github.com/chinonsochikelue/tharos Docs: https://tharos.vercel.app
Would love feedback on the rule engine and the TUI ux!