Is my source code sent to ShipSafe servers?

Never. ShipSafe runs entirely on your machine. Scans, analysis, and auto-fixes all happen locally. Your source code never leaves your computer. No account required. Works offline.

How do I install ShipSafe?

Run: npm install -g @shipsafe/cli. Then run 'shipsafe scan' in any project directory. That's it — zero configuration required.

What does ShipSafe detect?

ShipSafe has 1,200+ detection rules covering SQL injection (127 rules), XSS (143 rules), prompt injection (7 rules), command injection (89 rules), SSRF (67 rules), hardcoded secrets (174 patterns), insecure authentication (98 rules), malicious MCP servers (30 patterns), path traversal, insecure deserialization, and more.

How is ShipSafe different from Snyk or SonarQube?

ShipSafe runs entirely locally (Snyk requires cloud), has AI-specific security rules like prompt injection and malicious MCP server detection (unique to ShipSafe), strips image metadata, and includes an MCP server for AI coding assistants. It's built for solo developers and small teams who use AI coding assistants.

Can I use ShipSafe with Claude, Cursor, or other AI tools?

Yes. ShipSafe includes an MCP server with 8 tools that plug directly into Claude, Cursor, Windsurf, and any other MCP-compatible assistant. Your AI can check security while it writes code.

What is prompt injection and does ShipSafe detect it?

Prompt injection is when untrusted user input is passed directly into LLM prompts, allowing attackers to manipulate AI behavior. ShipSafe has 7 dedicated rules that detect unsanitized user input in LLM prompts, system prompt leakage, indirect prompt injection via retrieved content, and prompt template manipulation.

What are malicious MCP servers and how does ShipSafe detect them?

Malicious MCP servers are rogue AI tool servers that can steal credentials, exfiltrate code, or inject malicious prompts. ShipSafe's scan-environment command checks your MCP configurations, CLAUDE.md files, git hooks, and npm scripts for 30 threat patterns including credential theft, data exfiltration, and prompt injection.

Yes. The free tier includes full security scanning with 1,200+ rules, git pre-commit hooks, baseline/delta mode, and support for 1 project. Pro ($19/mo) adds knowledge graph analysis, auto-fix, monitoring, and MCP server. Team ($49/mo) adds GitHub App integration and source maps.

How does ShipSafe reduce false positives?

ShipSafe uses Tree-sitter AST analysis to understand code context — it knows whether a variable comes from user input and whether it's been sanitized before reaching a dangerous sink. This context-aware detection dramatically reduces false positives compared to regex-only scanners.

Is it safe to use claude --dangerously-skip-permissions with ShipSafe?

ShipSafe's git pre-commit hooks provide a safety net when using --dangerously-skip-permissions. Even if Claude Code writes insecure code in autonomous mode, ShipSafe blocks the commit if it contains hardcoded secrets or critical vulnerabilities. Install hooks with: shipsafe hooks install.

Getting Started

Install ShipSafe, run your first security scan, and set up git hooks in under 60 seconds. No account required. No configuration needed.

Installation

ShipSafe is distributed as an npm package. Install it globally:

npm install -g @shipsafe/cli

Verify the installation:

shipsafe --version
# v1.0.6

Requires Node.js 18 or later. Works on macOS, Linux, and Windows.

Your First Scan

Navigate to any project directory and run:

cd your-project
shipsafe scan

ShipSafe scans all JavaScript, TypeScript, and Python files in your project. It respects your .gitignore file and skips node_modules automatically.

The scan typically completes in 2-10 seconds depending on project size. No internet connection is required — everything runs locally on your machine.

Understanding Results

Scan output shows findings grouped by severity:

$ shipsafe scan

  CRITICAL  secrets/stripe-live-key
  src/payments.ts:3
  Stripe live secret key detected.
  Fix: Move to environment variable — process.env.STRIPE_SECRET_KEY

  HIGH  sql-injection/template-literal-in-query
  src/routes/users.ts:12
  User input interpolated directly into SQL query.
  Fix: Use parameterized queries.

  MEDIUM  auth/missing-csrf-protection
  src/routes/api.ts:8
  POST endpoint has no CSRF protection.

Scan complete: 3 findings (1 critical, 1 high, 1 medium)
Duration: 2.3s | Files scanned: 47

Each finding includes:

•Severity — CRITICAL, HIGH, MEDIUM, or LOW
•Rule ID — category/specific-rule for easy reference
•Location — file path and line number
•Description — what was detected
•Fix suggestion — how to remediate the issue

Git Hooks

Install pre-commit hooks to automatically scan before every commit. This blocks hardcoded secrets and critical vulnerabilities from entering your git history.

shipsafe hooks install

The hook scans only staged files (fast) and blocks the commit if CRITICAL findings are detected. HIGH findings generate warnings but allow the commit. This is configurable in shipsafe.config.json.

This is especially valuable when using claude --dangerously-skip-permissions — the hooks act as a safety net for autonomous AI coding.

Setting a Baseline

If you are adding ShipSafe to an existing project, set a baseline to suppress existing findings. Future scans will only show new issues.

# Save current findings as baseline
shipsafe scan --baseline

# Future scans only show NEW findings
shipsafe scan --delta

The baseline is stored in .shipsafe/baseline.json. Commit this file to share the baseline with your team.

MCP Server Setup

Add ShipSafe as an MCP server so your AI coding assistant can scan for security issues while writing code.

// .mcp.json or claude_desktop_config.json
{
  "mcpServers": {
    "shipsafe": {
      "command": "shipsafe",
      "args": ["mcp-server"]
    }
  }
}

Once configured, your AI assistant can call tools like shipsafe_scan and shipsafe_check_package directly. See the full MCP tools reference.

Next Steps

CLI Reference

All commands and flags

Configuration

Customize ShipSafe behavior

MCP Server

All 8 MCP tools documented

Detecting API Keys

174 secret patterns in depth