Skip to content

Blog

Releases, comparisons, and technical notes on taint data flow analysis.

Distilling Frontier Model Security Reviews into a Cheap Deterministic Scan

We're releasing skills that pair an LLM agent with OpenTaint's taint engine. The agent maps your application's attack surface, models the library methods the engine can't see, and writes rules specific to your code — and it can confirm a finding by actually exploiting it. After that, the engine re-scans every future commit on its own, for the cost of CPU.

Jun 10, 2026

Taint Analysis for Spring: Security Beyond Syntax

AST-pattern matchers miss what Spring's architecture creates: data flows that cross class boundaries through injected beans, API calls whose danger is decided at bean wiring time, and endpoints linked only through JPA persistence. OpenTaint traces tainted data through every layer, from injected services to database storage to dangerous API calls, distinguishing raw columns from sanitized ones.

Apr 28, 2026