rustmachineguard

> This is an independent Rust rewrite of [step-security/dev-machine-guard](https://github.com/step-security/dev-machine-guard), not the original project. > The original is a bash script by StepSecurity licensed under Apache-2.0. > This rewrite extends it with Linux support, additional detection categories, and security hardening.

Scan your developer machine for AI agents, MCP servers, IDE extensions, cloud credentials, SSH keys, and more — in seconds.

Traditional endpoint protection (EDR, MDM) has no visibility into developer-specific tooling layers: AI coding assistants, Model Context Protocol servers, IDE extensions with broad permissions, and locally-running inference frameworks. This tool fills that gap.

# Build from source
cargo build --release

# Run a scan
./target/release/dev-machine-guard

# JSON output
./target/release/dev-machine-guard --format json

# HTML report
./target/release/dev-machine-guard --format html --output report.html

# Skip specific categories
./target/release/dev-machine-guard --skip ssh,cloud

| Category | What's Detected | Examples | |---|---|---| | AI Agents & Tools | CLI tools and desktop apps | Claude Code, GitHub Copilot, Codex, Gemini, Aider, Goose, Open Interpreter | | AI Frameworks | Local inference servers | Ollama, LocalAI, LM Studio, llama.cpp, vLLM, TGI | | IDE Installations | Developer editors | VS Code, Cursor, Windsurf, Zed, Antigravity | | IDE Extensions | Installed extensions | VS Code-style and Zed format parsing with version info | | MCP Configurations | Model Context Protocol servers | Claude Desktop, Claude Code, Cursor, Windsurf, Zed, VS Code | | Package Managers | Node.js ecosystem | npm, yarn, pnpm, bun, Node.js | | Shell Configs\* | AI-related env vars | API keys (redacted), tool aliases | | SSH Keys\* | Key inventory with passphrase audit | RSA, ECDSA, Ed25519/OpenSSH