What would your agent swallow?
Paste text, drop a file, point it at a GitHub repo, or scan an image — the same 1089-pattern engine as pip install sunglasses, running live. Your content is scanned in memory and discarded.
Scans the repo's agent-input surfaces — README · CLAUDE.md · AGENTS.md · .cursorrules · MCP configs · llms.txt — the files an AI agent actually reads. Fetches only from GitHub's raw domain. Sunglasses is an agent-input scanner, not a code auditor.
Known attack signal
The content matched one or more tested attack patterns — with the pattern ID and the exact matched text shown, so you can verify the call yourself. Never a naked red light.
Flagged for review
Suspicious but not conclusive — the honest middle. In production this routes to human review instead of silently blocking your pipeline.
No known patterns fired
A clean result is a confidence floor, not a guarantee — novel attacks with no known signature pass any scanner. We say that out loud.
False positive? Tell us and we fix the pattern — every report makes the engine sharper for everyone. Report it in one click. Full honest scope: what we catch vs what we don't.
The demo is the appetizer. The real thing runs local-first in your pipeline — no caps, no rate limits, MIT licensed.