Skip to content

Releases: UnityInFlow/injection-scanner

Release list

v0.0.2

Choose a tag to compare

@github-actions github-actions released this 24 Jun 15:18

injection-scanner release

Raw, target-triple-named binaries built entirely on UnityInFlow org
self-hosted Linux runners via cargo zigbuild (no GitHub-hosted
runners). Download the binary for your platform, chmod +x, run.

The crate and binary are both named injection-scanner.

Platform Asset (raw binary)
Linux x86_64 (musl) injection-scanner-x86_64-unknown-linux-musl
Linux aarch64 (musl) injection-scanner-aarch64-unknown-linux-musl
Linux x86_64 (gnu) injection-scanner-x86_64-unknown-linux-gnu
Linux aarch64 (gnu) injection-scanner-aarch64-unknown-linux-gnu
macOS x86_64 injection-scanner-x86_64-apple-darwin (if present)
macOS aarch64 injection-scanner-aarch64-apple-darwin (if present)

The musl binaries are statically linked (run-anywhere, no libc-
version drift) and are the assets the spec-ci-plugin GitHub Action
downloads and executes at CI runtime.

macOS binaries are cross-compiled via cargo-zigbuild. If the
apple-darwin SDK/sysroot build is unavailable, macOS is
document-and-deferred to v2 (A4 fallback) and the assets above will
be absent — the Linux set still ships.

Checksums

See SHA256SUMS.txt for verification.

Full Changelog: v0.0.1...v0.0.2

v0.0.1

Choose a tag to compare

@hermanngeorge15 hermanngeorge15 released this 02 Apr 10:42

Initial release of injection-scanner

What's included

  • 30 prompt injection patterns across 5 categories
  • Role overrides, instruction injection, exfiltration, jailbreaks, encoding attacks
  • YAML pattern definitions (embedded at compile time + external directory support)
  • Severity classification (CRITICAL/HIGH/MEDIUM/LOW)
  • Inline suppression (injection-scanner:ignore PI001)
  • Text and JSON output
  • Stdin mode for piping
  • Recursive directory scanning

Install

Download the binary for your platform from the assets below.

Usage

injection-scanner check CLAUDE.md
injection-scanner check . --format json
echo 'suspicious text' | injection-scanner check -