Skip to content
Contact us
  • There are no suggestions because the search field is empty.

Aspen: Guardian AI

Aspen Guardian turns reactive scanner findings into proactive guidance for your AI.

Overview

Aspen: Guardian AI takes real findings from your CI scanners and converts them into small, tailored updates to your AI assistant’s existing rule file (e.g., copilot-instructions.md, CLAUDE.md, etc.), ensuring it adapts as your codebase and development practices evolve.
 

How It Works

Guardian AI ingests SAST scanner results and analyzes them to produce an inventory of potentially critical issues. 
  • It transforms these findings into rules your AI assistant can use to prevent and remediate future vulnerabilities. 
  • It updates your rules file through a pull request, allowing you to review, modify, and approve the changes. 

The Result

Instead of repeatedly flagging the same issues, Aspen: Guardian AI creates a feedback loop: if your AI assistant produces something your scanner flags, Guardian updates your rules file, reducing the likelihood that the insecure code will be generated again. It learns from your project’s real vulnerabilities and gradually adapts the assistant’s behavior as your codebase changes.
 

Supported Scanners

Guardian Action currently supports the following security scanners:

  • Bandit - Python security scanner
  • Snyk - Multi-language dependency and code scanner

Support for additional scanners is planned for future releases.

To integrate with Guardian, scanners must produce JSON-formatted output that the Guardian service can ingest and process.

If you have a scanner you’d like to use that isn’t currently supported, please reach out to your Account Manager or contact us at support@securityjourney.com.

 

Configuration and Setup

Prerequisites

To complete this setup in GitHub, you must have the following access:

  • Organization or Repository Admin access
    Required to add or manage secrets (e.g., Actions secrets, environment secrets).

  • Write/Commit access to the repository
    Required to create or update GitHub Actions workflows (files in .github/workflows/).

  • Note: CODEOWNERS restrictions may apply
    If the repository uses a CODEOWNERS file, workflow changes may require review and approval from designated code owners before they can be merged.

Complete Setup Instructions

For step-by-step setup instructions and configuration details, refer to our published Aspen: Guardian AI documentation.

Need Help Integrating with CI/CD?

Want to integrate Aspen: Guardian AI into your CI/CD pipeline? Contact your Account Manager or email support@securityjourney.com