Blog

Posts from the Nox team.

AI application security, supply-chain provenance, scanner internals, and weekly findings from scanning popular open-source LLM SDKs.

May 9, 2026

Scan of the week: anthropic-cookbook (or, what 1.95M findings teach you about precision)

We pointed Nox at anthropic-cookbook. It returned 1,950,121 findings. Almost all of them are wrong. Here is what that taught us about RAG-corpus false positives, the literal_eval / eval distinction, and how a real CLAUDE-uses-MCP fixture trips the AI-004 rule.

scan-of-the-week
ai-security
false-positives
precision

May 9, 2026

Nox v0.9.0 — K8s drift detection, triage history, and a remediation action

v0.9.0 ships cluster-vs-IaC drift detection, JSON-backed triage history for AI-assisted review, a strict PR gate for high/critical findings, and a marketplace action that opens dependency-remediation PRs.

release
kubernetes
ai-security
ci

May 5, 2026

Inside Nox: the four AI rule families that matter for LLM apps

AI-PI, AI-EMB, AI-AGENT, MCP-* — what they catch, why every other scanner misses them, and how the AIBOM ties it all together.

ai-security
mcp
llm
deep-dive

May 4, 2026

Scan of the week: the MCP Python SDK

We ran Nox against modelcontextprotocol/python-sdk plus 6 other popular LLM/agent repos. Here's what AI-aware scanning catches in 2 seconds — across all 7.

scan-of-the-week
mcp
ai-security
bench

May 3, 2026

Announcing Nox: the security scanner that understands your AI app

Open-source, AI-native security scanner with a cosign-signed plugin marketplace. 19 verified plugins, 717 rules, MCP-native. No SaaS, no telemetry, no source upload.

launch
ai-security
supply-chain