Spaces:
Running
Running
added description
Browse files
main.py
CHANGED
@@ -513,8 +513,39 @@ def process_file_sync(file_obj, custom_checks, selected_servers):
|
|
513 |
return asyncio.run(process_file(file_obj, custom_checks, selected_servers))
|
514 |
|
515 |
# Создаем интерфейс Gradio
|
516 |
-
with gr.Blocks(title="
|
517 |
-
gr.Markdown("
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
518 |
|
519 |
with gr.Row():
|
520 |
with gr.Column(scale=1):
|
|
|
513 |
return asyncio.run(process_file(file_obj, custom_checks, selected_servers))
|
514 |
|
515 |
# Создаем интерфейс Gradio
|
516 |
+
with gr.Blocks(title="VulnBuster - AI Security Agent", theme=gr.themes.Soft()) as demo:
|
517 |
+
gr.Markdown("""
|
518 |
+
# 🛡️ VulnBuster - AI Security Agent
|
519 |
+
|
520 |
+
**Intelligent automated code security auditing through orchestrated MCP services**
|
521 |
+
|
522 |
+
VulnBuster demonstrates an **agentic approach** to vulnerability scanning by combining multiple security tools in a single, intelligent interface. The AI agent automatically analyzes code using various scanners, correlates findings, and provides AI-powered remediation suggestions.
|
523 |
+
|
524 |
+
## 🎯 Key Features
|
525 |
+
- **🤖 AI Agent Orchestration**: Intelligent coordination of multiple MCP security scanners
|
526 |
+
- **⚡ Real-time Analysis**: Upload code → Multi-tool scanning → AI-powered fixes
|
527 |
+
- **🧠 Context-Aware**: Agent understands scan results and provides meaningful insights
|
528 |
+
- **🔄 Automated Workflow**: From vulnerability detection to code remediation
|
529 |
+
|
530 |
+
## 🛠️ Integrated Security Tools
|
531 |
+
|
532 |
+
| Tool | Purpose | Detects |
|
533 |
+
|------|---------|---------|
|
534 |
+
| **🔒 Bandit** | Python security analysis | Hardcoded passwords, SQL injection, shell injection |
|
535 |
+
| **🔍 Detect Secrets** | Secret detection | API keys, tokens, credentials with entropy analysis |
|
536 |
+
| **🛡️ Semgrep** | Multi-language analysis | Advanced patterns, custom rules, 20+ languages |
|
537 |
+
| **📦 Pip Audit** | Dependency scanning | CVE vulnerabilities, supply chain security |
|
538 |
+
| **📋 Circle Test** | Policy compliance | 21 security policies, code quality standards |
|
539 |
+
|
540 |
+
## 📊 Agent Demo for Track 3
|
541 |
+
This Space showcases **intelligent agent capabilities**:
|
542 |
+
- Automatic tool selection based on code type
|
543 |
+
- Cross-tool correlation of security findings
|
544 |
+
- AI-powered vulnerability prioritization
|
545 |
+
- Automated fix generation with context understanding
|
546 |
+
|
547 |
+
---
|
548 |
+
""")
|
549 |
|
550 |
with gr.Row():
|
551 |
with gr.Column(scale=1):
|