Heimdall uses your local AI tools to scan code for security flaws
Heimdall is a that finds security in your code by routing files through AI tools you already have installed — Claude Code, Gemini, Codex, or Opencode. You point it at a source folder, it sends the files to whichever local AI tools you have, collects their findings, removes duplicates, and outputs a clean report in JSON, Markdown, or SARIF format. Everything runs on your machine: no code is sent to external servers and no separate API keys are needed.