OpenTaint is an open-source taint analysis engine designed for application security in environments where AI-generated code is prevalent. It addresses the challenge of tracking untrusted data through complex codebases, providing a formal, deterministic approach to vulnerability detection that complements both AST-pattern matchers and LLM security agents. The tool is intended for developers and security professionals seeking to identify vulnerabilities that are often missed by conventional static analysis tools or AI agents alone.
The engine performs whole-program, inter-procedural dataflow analysis, following untrusted data across function boundaries, persistence layers, aliases, and asynchronous code constructs. For Java and Kotlin applications, OpenTaint operates directly on bytecode, allowing it to resolve inheritance, generics, and third-party library calls with precision. It is particularly thorough in analyzing Spring Boot applications, including support for Spring MVC, Spring Data, and related libraries, and models asynchronous flows such as those in Reactor, Spring WebFlux, and Kotlin coroutines. The engine also models JPA persistence layers, enabling it to detect stored injection vulnerabilities that span across multiple requests and database interactions.
OpenTaint supports more than 100 rules across over 20 vulnerability classes, including SQL injection, cross-site scripting (XSS), server-side request forgery (SSRF), SpEL injection, open redirects, path traversal, and command injection. Reports generated by the tool provide detailed traces from the origin of untrusted data—such as an HTTP source—through method calls and persistence layers, down to the vulnerable endpoint. Rules for analysis are written in a human-readable AST-pattern format, compatible with rule syntaxes used by tools like Semgrep and ast-grep, and can be authored or refined by both humans and AI agents. The engine applies these rules deterministically across entire codebases within minutes of CPU time.
0 and MIT licenses. There are no paid tiers or feature gates, and users can write custom rules without restriction. Installation options include CLI, Docker, npm, Homebrew, PowerShell, and curl-based scripts. OpenTaint is positioned as a comprehensive taint analysis solution for modern, AI-driven development workflows.
OpenTaint is a Security & compliance platforms product. It focuses on detecting and analyzing security vulnerabilities in codebases that traditional pattern matchers and LLM agents may miss. It is built as an open-source project for application security engineers. OpenTaint is open source under the Apache-2.0 license. It runs on the command line, and it can be self-hosted.
It is developed by seqra, and the product first shipped in 2024. Development happens publicly on GitHub with 97 stars and 129 commits in the last 90 days. Key capabilities include taint analysis, AST-pattern rules, and whole-program analysis.
Latest indexed changes and source events
seqra/opentaint verified by the PulseGate indexer
Other apps tracked under the same category.