Back to browse
Aider
AgentAI pair programming in your terminal with Git-first workflows
Paul Gauthier567.0K installs4.6 (3.5K)
63
CautionSecurity
20
Quality
90
Maintenance
92
Safety Tier Medium Risk
Security ScanScan Failed
PriceFree
Last Scanned5/12/2026
About
Open-source CLI tool supporting 100+ LLMs and 100+ programming languages. Automatically commits changes to Git with descriptive messages. Supports voice commands, images, and web page context.
Tags
Categories
Developer Tools
Security Scan
20/100
12 checks ยท 6 passed ยท 8 findings5/13/2026
Scanners:customsemgrepgitleakstrivy
SSRF Detection1
Prompt Injection
Data Exfiltration
Dangerous Commands
Secret Detection
Obfuscation1
External Fetches1
Credential Access2
Privilege Escalation
Secret Detection (Gitleaks)2
Static Security Analysis
Dependency Vulnerabilities1
Findings (8)
highDynamic code executioncustom
aider/editor.py:134
highSensitive environment variable accesscustom
aider/main.py:613
highUnvalidated URL fetchingcustom
aider/models.py:282
highSensitive environment variable accesscustom
aider/models.py:933
mediumDynamic external content fetchingcustom
aider/versioncheck.py:78
mediumDetected a Generic API Key, potentially exposing access to various services and sensitive operations.gitleaks
aider/analytics.py:55
mediumDetected a Generic API Key, potentially exposing access to various services and sensitive operations.gitleaks
aider/analytics.py:56
criticallitellm: LiteLLM: Authentication bypass and privilege escalation via OIDC userinfo cache key collisiontrivy
requirements.txt:0
50 files scanned from repository