Skip to content

Blog

Releases, comparisons, and technical notes on taint data flow analysis.

Distilling Frontier Model Security Reviews into a Cheap Deterministic Scan

We're releasing skills that pair an LLM agent with OpenTaint's taint engine. The agent maps the attack surface, models the missing library methods, writes project-specific rules, and can confirm each finding with a real exploit — then the deterministic engine re-scans for the price of CPU, on every future commit.

Jun 10, 2026

Taint Analysis for Spring: Security Beyond Syntax

AST-pattern matchers miss what Spring's architecture creates: data flows that cross class boundaries through injected beans, API calls whose danger is decided at bean wiring time, and endpoints linked only through JPA persistence. OpenTaint traces tainted data through every layer, from injected services to database storage to dangerous API calls, distinguishing raw columns from sanitized ones.

Apr 28, 2026