Themida GitHub

What's new

Changelog

Notable changes to Themida and this site. For the full commit history, see the repository.

Website
  • Launched themida.dev with dedicated Frameworks and Quickstart pages.
  • Added Privacy Policy and consent-gated analytics (Google Consent Mode v2).
Dashboard
  • Export completed scan results as SARIF or PDF from the dashboard.
  • Copy a suggested fix directly, and view scan usage metadata on the results page.
  • Scan a local directory from the CLI without Supabase or a GitHub App (--path).
Dashboard
  • Choose which frameworks to run when starting a scan.
Scanner
  • SARIF 2.1.0 export for GitHub Code Scanning.
  • Frameworks reference table now generated from the rule registry.
  • Added the PCI DSS rule pack.
Frameworks
  • Six rule packs ship end-to-end: GDPR, EU AI Act, MiCA, HIPAA, OWASP Top 10, PCI DSS (five rules each).
  • Four-stage scan pipeline: Fetch → Filter → Analyse (recon → deep scan) → Verify.
  • Provider-agnostic LLM support: Anthropic, OpenAI, and any OpenAI-compatible endpoint.
  • Released under AGPL-3.0; self-hosted with your own LLM key.