Protects Defense Coverage Platform Pricing GitHub
Open Source · Apache 2.0

Security for Every
AI Coding Assistant

Defense-in-depth protection that intercepts dangerous commands before they execute.
116 attack patterns. 6 screening layers. 100% local.

$ pipx install tweek && tweek install
116 Attack Patterns
6 Defense Layers
9 Supported Tools
100% Free
PROTECTS

Every Major AI Coding Tool

One security layer for your entire AI-assisted workflow. Three integration methods. Zero config changes.

FEATURED INTEGRATION

Moltbook

HTTP Proxy Wrapping

Protect your Moltbook sessions from prompt injection. Tweek wraps Moltbook's HTTP traffic with real-time command screening across all 6 defense layers.

$ tweek protect moltbot

Claude Code

CLI Hooks tweek install

Native integration. Zero config.

Claude Desktop

MCP Proxy tweek mcp install claude-desktop

Transparent MCP interception.

ChatGPT Desktop

MCP Proxy tweek mcp install chatgpt-desktop

Full MCP proxy coverage.

Gemini CLI

MCP Proxy tweek mcp install gemini

Google Gemini protection.

Cursor

HTTP Proxy tweek proxy setup

HTTPS interception.

Windsurf

HTTP Proxy tweek proxy setup

Full traffic screening.

Continue.dev

HTTP Proxy tweek proxy setup

Open-source AI IDE protection.

GitHub Copilot

HTTP Proxy tweek proxy setup

Copilot command screening.

Three Integration Methods

01

CLI Hooks

Native integration with Claude Code. Hooks into PreToolUse system. Zero config required.

tweek install
02

MCP Proxy

Transparent proxy for Claude Desktop, ChatGPT Desktop, and Gemini CLI. Screens all MCP tool calls.

tweek mcp install
03

HTTP Proxy

HTTPS interception for Cursor, Windsurf, Continue.dev, Moltbook, and GitHub Copilot.

tweek proxy setup
ARCHITECTURE

6-Layer Defense-in-Depth

Every layer catches what the previous one missed. Attackers must defeat ALL six layers to succeed.

L0

Sandbox Preview

FREE

Speculative execution in macOS sandbox-exec or Linux firejail/bubblewrap. Preview-then-execute model with syscall interception.

L1

Session Analysis

FREE

Cross-turn behavioral anomaly detection across 9 anomaly types. Catches multi-step attacks that look innocent individually.

L2

LLM Semantic Review

BYOK

Claude Haiku intent analysis with context-aware threat detection. Catches novel and obfuscated attacks that bypass pattern matching. Bring your own key.

L3

Pattern Matching

FREE

116 regex patterns across 6 attack categories. Structural matching, obfuscation detection, encoding analysis. All patterns included free.

L4

Rate Limiting

FREE

Burst detection, velocity anomaly analysis, and circuit breaker protection. Stops rapid-fire attack sequences.

L5

Compliance Scanning

COMING SOON

Detects regulated data before it enters AI context. HIPAA, PCI, GDPR, SOC2, and Government compliance patterns. Available with Teams and Enterprise plans.

You can obfuscate patterns. You can encode payloads. You can use Unicode tricks.
But you cannot defeat six independent security layers simultaneously.
COVERAGE

116 Attack Patterns

Full pattern library across 6 categories. All patterns free. Based on CrowdStrike taxonomy and real-world MCP CVEs.

38

Prompt Injection

  • Instruction override
  • Role hijacking
  • Jailbreak patterns
  • Obfuscation techniques
21

MCP / Claude CVEs

  • CVE-2025-6514 Tool Poisoning
  • CVE-2025-53967 Rug Pull
  • CVE-2025-64106 Shadowing
  • Inter-agent trust exploitation
18

Credential Theft

  • SSH key exfiltration
  • AWS credential theft
  • .env file access
  • Keychain dump attacks
14

Network Exfiltration

  • Reverse shells (bash, python, nc)
  • DNS tunneling
  • Data staging and exfil
  • Covert channel detection
5

Destructive Commands

  • rm -rf protection
  • Disk wipe detection
  • Config manipulation
  • System file attacks
20

Miscellaneous

  • Code injection
  • Reconnaissance
  • Encoding obfuscation
  • Capability aggregation
PLATFORM

Cross-Platform Support

Full protection on macOS, Linux, and Windows with platform-native integrations.

Feature macOS Linux Windows
CLI Hooks (Claude Code)
MCP Proxy
HTTP Proxy
Pattern Matching (116)
Rate Limiting
LLM Semantic Review
Session Analysis
Credential Vault Keychain Secret Service Credential Locker
Sandbox Preview sandbox-exec firejail / bubblewrap Not available
Compliance Scanning Teams+ Teams+ Teams+
tweek status 

 ████████╗██╗    ██╗███████╗███████╗██╗  ██╗
 ╚══██╔══╝██║    ██║██╔════╝██╔════╝██║ ██╔╝
    ██║   ██║ █╗ ██║█████╗  █████╗  █████╔╝
    ██║   ██║███╗██║██╔══╝  ██╔══╝  ██╔═██╗
    ██║   ╚███╔███╔╝███████╗███████╗██║  ██╗
    ╚═╝    ╚══╝╚══╝ ╚══════╝╚══════╝╚═╝  ╚═╝
  Security for every AI coding assistant

PROTECTION STATUS
Sandbox Preview      ● ACTIVE    sandbox-exec (macOS)
Session Analysis     ● ACTIVE    9 anomaly types monitored
LLM Semantic Review  ● ACTIVE    Claude Haiku (BYOK)
Pattern Engine       ● ACTIVE    116 patterns loaded
Rate Limiting        ● ACTIVE    Burst + velocity detection
Compliance Scanning  ○ UPGRADE   Teams / Enterprise

SUPPORTED TOOLS
Claude Code      CLI Hooks     ● connected
Claude Desktop   MCP Proxy     ● connected
ChatGPT Desktop  MCP Proxy     ● connected
Gemini CLI       MCP Proxy     ● connected
Cursor           HTTP Proxy    ● connected
Windsurf         HTTP Proxy    ● connected
Continue.dev     HTTP Proxy    ● connected
GitHub Copilot   HTTP Proxy    ● connected
Moltbook         HTTP Proxy    ● connected

TODAY'S ACTIVITY
312 commands  0 leaks  24 reviewed  8 blocked
EXTENSIBLE

Plugin Architecture

Extend Tweek with compliance modules, custom detectors, and LLM providers. Git-installable with signature verification.

Compliance

HIPAA PCI GDPR SOC2 Government Legal

Screening

Pattern Matching Session Analysis Rate Limiter Sandbox

LLM Providers

Anthropic OpenAI Google AWS Bedrock Azure OpenAI

Detectors

Custom Patterns Signature Verify Git Install
PRICING

Everything is Free

Apache 2.0. All 116 patterns, 5 defense layers, all 9 tool integrations. Free forever. Compliance scanning with Teams+.

CURRENT

Free

$0 forever

Everything. No limits. Apache 2.0.

  • 116 attack patterns (all categories)
  • LLM semantic review (BYOK)
  • Cross-turn session analysis
  • Rate limiting + circuit breaker
  • Sandbox preview (macOS + Linux)
  • Credential vault (platform-native)
  • MCP proxy + HTTP proxy
  • Plugin system (4 categories)
  • Security logging + CSV export
Get Started Free
COMING SOON

Teams

TBD per seat / month

For teams of 2-50 developers.

  • Everything in Free
  • Compliance scanning (HIPAA, PCI, GDPR, SOC2, Gov)
  • Centralized configuration
  • Team license management
  • Audit log API
  • Priority support
COMING SOON

Enterprise

Custom for regulated orgs

For enterprise and compliance-critical teams.

  • Everything in Teams
  • SSO (SAML / OIDC)
  • Custom pattern authoring
  • SLA support
  • Dedicated account manager

Get Protected in 30 Seconds

All 116 attack patterns. 5 defense layers. All 9 tools. Free and open source.

$ pipx install tweek && tweek install
View on GitHub