Today we're open-sourcing Bumblebee, a read-only scanner for macOS and Linux. It checks developer machines for risky packages, extensions, and AI tool configs. Connected to Computer, it can trigger deeper scans whenever a new supply-chain risk emerges. https://t.co/FOaWnF1yQy https://t.co/wXauD4wDOT
Perplexity Open Sources Bumblebee to Scan Developer Machines for AI Risks
Perplexity· Updated
Perplexity open-sourced Bumblebee, a read-only security scanner for macOS and Linux designed to identify supply-chain vulnerabilities on developer endpoints. The tool specifically targets the emerging attack surface of AI agent configurations and editor extensions that traditional scanners often miss.
MCP) configurations. It never executes code or invokes package managers during a sweep to avoid triggering malicious scripts.- Language
- Go 1.25+
- License
- Apache 2.0
- OS support
- macOS and Linux
- Ecosystems scanned
- npm, PyPI, MCP, and others
- Execution mode
- Read-only (no code execution)
Developer environments are now primary targets for lateral movement, as seen in the LiteLLM supply chain attack and Vercel's third-party AI tool breach. As teams adopt agentic tools, they introduce unmonitored configuration files and IDE extensions. Bumblebee audits this messy local state without the risk of triggering post-install malware.
You can deploy Bumblebee as a static binary using three scan profiles: baseline for routine inventory, project for workspaces, and deep for incident response. It integrates with threat intelligence to flag matches against known exposure catalogs. The project is available now under the Apache License 2.0 on GitHub for security teams.
Still wondering? A few quick answers below.
Every HeadsUpAI update is written based on its original source and reviewed before it's published. Read our editorial standards →





