senweaver-ide

SenWeaver IDE — 开源多智能体协同 AI 编程平台,内置自主在线强化学习(APO)引擎。系统从每次用户交互中实时学习,可自建知识库等内部数据进行训练,自动优化 Prompt 策略,越用越智能。支持主 Agent + 子 Agent 并行协作、40+ 内置工具(文件/终端/搜索/文档/浏览器/视觉)、AI 代码安全检测与修复、WebRTC P2P 远程协作、多模型灵活切换(GPT/Claude/DeepSeek/Ollama 等)。MIT 协议完全开源,客户端与后端全栈可自主部署。

senweaverai-mlTypeScriptMIT
GitHub
0Tools
24Findings
15Stars
Mar 22, 2026Last Scanned
3 critical · 18 high · 1 medium · 2 low findings detected

Security Category Deep Dive

Prompt Injection
Prompt & context manipulation attacks
69
Maturity
14
Rules
5
Sub-Categories
1
Gaps
64%
Implemented
56
Tests
1
Stories
PI-DIRDirect Input Injection
100%3 rules
Injection via tool descriptions and parameter fields
GAP-001Prompt Injection Coverage GapMissing detection coverage for emerging prompt injection attack variants not addressed by current rules
PI-INDIndirect / Gateway Injection
100%4 rules
Hidden instructions via external content and tool responses
PI-CTXContext Manipulation
100%2 rules
Context window saturation and prior-approval exploitation
PI-ENCEncoding & Obfuscation
100%3 rules
Payload hiding via invisible chars, base64, schema fields
PI-TPLTemplate & Output Poisoning
100%2 rules
Injection via prompt templates and runtime tool output
Framework Coverage
OWASP MCP Top 1014/14
MITRE ATLAS14/14
CoSAI MCP2/14
OWASP Agentic Top 1012/14
Kill Chain Phases
0Initial Access
0Defense Evasion
0Execution
0Persistence