Back to Agents
vibeguard
rohansx February 24, 2026
2 copies 0 downloads
Security Property Graph (SPG) oracle for AI coding agents.
Agent Definition
# VibeGuard
**Security Property Graph (SPG) oracle for AI coding agents.** VibeGuard builds a persistent, live graph encoding the full security semantics of your codebase — taint sources, sinks, sanitizers, trust boundaries, attack paths — and exposes them to AI coding agents (Cursor, Claude Code) via MCP, so agents write secure code by construction.
No code leaves your machine. Runs locally on stdio. Sub-500ms incremental updates.
## How It Works
```
┌─────────────────────────────────────────────────────────────────────┐
│ YOUR CODEBASE │
│ Python · TypeScript · JavaScript · Go │
└──────────────┬──────────────────────────────────────────────────────┘
│ file save (inotify / FSEvents)
▼
┌──────────────────────────────────────────────────────────────────────┐
│ VGX DAEMON │
│ │
│ ┌──────────────┐ ┌──────────────┐ ┌──────────────────────────┐ │
│ │ Parser │──▶│ SPG Builder │──▶│ Taint Propagation (BFS) │ │
│ │ (per-file) │ │ (classify │ │ source → sink paths │ │
│ │ │ │ nodes/edges)│ │ sanitizer detection │ │
│ └──────────────┘ └──────────────┘ └──────────────────────────┘ │
│ │
│ ┌──────────────────────────────────────────────────────────────────┐│
│ │ MCP Server (stdio) ││
│ │ 8 deterministic security query tools → structured JSON ││
│ └──────────────────────────────────────────────────────────────────┘│
└──────────────┬───────────────────────────────────────────────────────┘
│ stdio (MCP protocol)
▼
┌──────────────────────────────────────────────────────────────────────┐
│ AI CODING AGENT (Cursor / ClaudComments
More Agents
View alldocumentation
Documentation & Onboarding Agent
Agent that generates comprehensive documentation, API references, architecture diagrams, and developer onboarding guides from existing code.
C
Communitydebugging
Cursor Bug Triage Agent
Agent configuration for systematic bug investigation that traces issues from error logs through the codebase to root cause with suggested fixes.
C
Communityapi
API Integration Agent
Agent for integrating third-party APIs including SDK setup, type generation, error handling, retry logic, and rate limit management.
C
Communitycoding
Cursor Agent Mode
Cursor's built-in autonomous coding agent that can make multi-file edits, run terminal commands, search the codebase, and iteratively build features with minimal human intervention.
C
Cursor Teamcloud
Cursor Background Agent
Cloud-based autonomous coding agent that runs in the background on remote sandboxed environments, handling complex multi-step tasks while you continue working.
C
Cursor Teamcomposer
Cursor Composer Agent
Cursor's multi-file editing agent within Composer mode that can create, edit, and delete files across your entire project in a single conversation.
C
Cursor Team