Stimpack

Common security scanning tools identify problems and burden developers with manual fixes. This groundbreaking GitHub Actions workflow transforms security into a self-healing process using AI agents.

Comment

Inspiration

As developers, we have felt the pain of dependency vulnerabilities in large projects, leading to bottlenecks and frustrations with the workflow. So we decided to build an Intelligent Security Remediation CI: Automated Vulnerability Fixing with AI.

What it does

Our CI is able to use Semgrep to find vulnerabilities within our pull request, then we have a Triage agent see if the vulnerability can be auto-fixed, assisted, or manual fix. Once we have those we then hand the vulnerability to Claude Code to fix the auto-fix and assisted code.

How we built it

We built it using GitHub CI/CD Actions, Semgrep, Claude Code

Challenges we ran into

We had challenges with fixing multiple vulnerabilities in one Claude fix, also context window for claude using big Pull Requests

Accomplishments that we're proud of

We're proud of integrating Semgrep into our CI/CD pipeline

What we learned

We learned how to use Github Actions with Github Apps like Semgrep and Claude.

What's next for Stimpack

Stimpack is ready to heal your repo

Built With

claude
github
python
semgrep

Updates

Isaiah Meza started this project — Oct 10, 2025 07:15 PM EDT

Leave feedback in the comments!

Log in or sign up for Devpost to join the conversation.