Offline-first
Ingestion, scanning, and every test run against local data. A metered or air-gapped network is never touched. Live fetching is an opt-in feature, not a requirement.
$ unslop scan . # no sockets opened
// NON-LLM CODE INTELLIGENCE
Unslop finds bugs, vulnerabilities, leaked secrets, code rot, and broken UX — offline, with no model in the detection path. Pure Rust. Zero C dependencies. Air-gap safe by design.
// CAPABILITIES
Each subcommand replaces a category of tool. Together they are the hygiene layer your codebase never had — all in a single static binary.
// WHY IT'S BUILT THIS WAY
Ingestion, scanning, and every test run against local data. A metered or air-gapped network is never touched. Live fetching is an opt-in feature, not a requirement.
$ unslop scan . # no sockets opened
Detection is deterministic: HMAC blind-index, MinHash/LSH clone matching, feature-hash kNN, and a CWE-tagged rule engine. Same input, same output — no tokens, no latency, no leakage.
exact · clone · knn · pattern
Matching runs on a non-reversible feature plane. Source, provenance, and raw code live in a sealed plane a detection node literally cannot read. Research data that slips into prod leaks nothing.
pepper → match · kek → reveal
// PRICING
The CLI is free forever on your machine. Teams pay for the dashboard, CI enforcement, and the encrypted corpus feed. Regulated shops pay to run the whole thing air-gapped.
The full CLI, local, single dev. Free for public repos, always.
.unslop.updatedFor solo devs and freelancers who want it in their workflow.
--render browser UX engineCI enforcement and a shared dashboard for whole teams.
--fail-on)Run it air-gapped. The tier the cloud scanners can't serve.
// AIR-GAPPED DEPLOYMENT
Fintech, health, defense, critical infra. Unslop runs entirely inside your perimeter — license verification is a signed file checked locally, never a phone-home. No source leaves the building. No model sees your code.
"tier": "enterprise", "licensee": "ACME Federal", "seats": 250, "features": ["corpus-feed", "onprem"], "expires": 1798761600, "signature": "ed25519:9f2a…c17b"
// GET STARTED
brew install unslop
$ unslop scan . # match code against the KB $ unslop secrets . # hunt leaked credentials + PII $ unslop quality src/ # code-health + 0–100 score $ unslop frontend . --render # real rendered UX audit