Ranex is a local-first toolkit for Python codebases. It provides Atlas (code indexing and codebase intelligence), a Dependency Firewall (policy-based import validation), and an optional MCP server for AI assistants.

Does Ranex send my code to the cloud?

No. Ranex is designed as a local-first tool. It indexes your project locally.

What is the difference between CLI, Python API, and MCP?

CLI is the human-friendly entrypoint for scanning and querying. Python API is programmatic access from Python scripts/tests. MCP is the integration layer for AI assistants via a local MCP server.

Do I need to run scan every time?

Run ranex atlas scan whenever you changed many files, switched branches, or Atlas results appear stale.

How do I reset Ranex for a project?

Delete .ranex/atlas.sqlite and re-run ranex atlas scan.

How do I allow a new dependency?

Add it to .ranex/firewall.yaml under allowed_packages.

Why does the firewall block standard library modules?

Your policy can explicitly block patterns even if they are part of the standard library. This is intentional when a module/pattern is considered unsafe in your environment.

v0.1.3 Release

Available on PyPI: ranex

Stop AI from silently breaking your
FastAPI API

Name: Ranex
Availability: InStock
Rating: 4.8 (127 reviews)
Author: Ranex

Ranex adds fail-closed guardrails for AI-written changes: workflow gates, drift checks, security scanning, and test integrity validation—so agents iterate until it's PASS.

Python & FastAPI

|Next.js, PHP, WordPress coming soon

Get Started Free Star on GitHub

43MCP tools

Local-firstno cloud APIs

For Python & FastAPI projects

✦ FastAPI endpoint truth (static)

Truth capsule for one endpoint

A truth capsule is a structured JSON bundle meant for tooling and AI assistants to reason about a specific FastAPI endpoint/handler.

Learn more

Truth capsule

Structured endpoint bundle (static)

--json

$ ranex atlas fastapi-truth-capsule --json

endpoint: resolved

spans: handler / dependencies / schemas / call_slice

unresolved: [] (when static proof is complete)

Atlas architecture

Local-first flow from AI tools to project files

AI CODING TOOLS

▸Claude Desktop

▸Cursor IDE

▸Windsurf IDE

↓flows to

Router topology

Understand how routes are split across routers vs direct app routes.

$ ranex atlas fastapi-router-topology --json

routers: name / prefix / modules / endpoints

direct_app_routes: []

FastAPI scaling report

Static analysis intended to surface patterns that commonly cause performance or scalability issues.

$ ranex atlas fastapi-scaling-report --json

stats: endpoint counts, etc.

violations: severity / message / file_path / suggestion?

Atlas

Local index

.ranex/atlas.sqlite

Firewall

Policy file

.ranex/firewall.yaml

Local

Runs offline

no cloud APIs

MCP

Optional server

stdio + env vars

✦ Policy-driven

Dependency & import guardrails

The Dependency Firewall validates imports against an explicit policy to protect you from risky patterns, unknown dependencies, and typosquatting.

Learn more

Policy modes

Use strict to block unknown/not-allowed imports, audit_only for reporting, or disabled to turn off firewall decisions.

.ranex/firewall.yaml

policy_mode: strict

CLI

Fail-closed import checks

Check one import, check many imports, or analyze a file. Exit code 2 indicates blocked, unknown, or typosquat.

$ ranex firewall check-import requests

allowed: true

status: allowed

reason: in allowlist

✦ Developer experience

CLI & MCP integration

Use Ranex via the CLI, Python API, or from MCP-compatible assistants through a local MCP server (ranex-mcp-server) that communicates over stdio.

CLI Commands

Examples

ranex init

ranex atlas scan

ranex atlas search "<query>"

ranex atlas file-impact <file>

ranex firewall check-import <import>

ranex firewall analyze-file <file>

ranex firewall typosquat <name>

ranex firewall info

MCP Server Tools

Examples

ranex_atlas_scan

ranex_atlas_search

ranex_atlas_read_span

ranex_atlas_fastapi_truth_capsule

ranex_atlas_fastapi_router_topology

ranex_firewall_check_import

ranex_firewall_analyze_file

ranex_firewall_policy_mode

CLI first

Scan, query, and validate with --json for tooling

MCP server (optional)

ranex-mcp-server over stdio with RANEX_PROJECT_ROOT

Policy-as-code

Keep .ranex/firewall.yaml in version control

✦ Fail-closed

Preserve FastAPI API truth before you merge

Ranex is local-first: Atlas builds a project index and emits verifiable spans; FastAPI tooling generates truth capsules for a specific endpoint/handler; the Dependency Firewall validates imports against an explicit policy.

Learn more

MCP server (optional)

Use Ranex from MCP-compatible assistants via a local stdio server.

mcp client command

env

RANEX_PROJECT_ROOT:

RANEX_LOG:

Compatible with

Cursor, Windsurf, Claude Desktop

Local-first, no cloud dependencies

Stdio communication protocol

Available tools

Atlas search & dependency analysis

Firewall import validation

FastAPI scaling analysis

Span-first code truth

Use Atlas span tools to return exact (file, start_line, end_line) excerpts.

ranex

file + line ranges (spans)

Dependency Firewall

Validate imports against an explicit policy to block risky patterns, unknown dependencies, and typosquatting.

ranex firewall check-import

Frequently Asked Questions

Everything you need to know about Ranex.

Still have questions? Contact our team

Ready to ship production code faster?

Ready to lock your FastAPI API?

Validate AI-generated changes with workflow gates, drift detection, and security scans— locally, with machine-readable failures your agent can fix.

Join Team Edition Waitlist

Star on GitHub

40% early adopter discount

Price locked for 2 years

Setup in under 10 minutes

Stop AI from silently breaking your
FastAPI API

Ranex adds fail-closed guardrails for AI-written changes: workflow gates, drift checks, security scanning, and test integrity validation—so agents iterate until it's PASS.

Python & FastAPI

|Next.js, PHP, WordPress coming soon

43MCP tools

Local-firstno cloud APIs

For Python & FastAPI projects

Menu

Stop AI from silently breaking your
FastAPI API

Truth capsule for one endpoint

Truth capsule

Atlas architecture

Router topology

FastAPI scaling report

Dependency & import guardrails

Policy modes

Fail-closed import checks

CLI & MCP integration

CLI first

MCP server (optional)

Policy-as-code

Preserve FastAPI API truth before you merge

MCP server (optional)

Span-first code truth

Dependency Firewall

Frequently Asked Questions

Ready to lock your FastAPI API?

Menu

Stop AI from silently breaking your
FastAPI API

Truth capsule for one endpoint

Truth capsule

Atlas architecture

Router topology

FastAPI scaling report

Dependency & import guardrails

Policy modes

Fail-closed import checks

CLI & MCP integration

CLI first

MCP server (optional)

Policy-as-code

Preserve FastAPI API truth before you merge

MCP server (optional)

Span-first code truth

Dependency Firewall

Frequently Asked Questions

Ready to lock your FastAPI API?

Stop AI from silently breaking yourFastAPI API

Truth capsule for one endpoint

Truth capsule

Atlas architecture

Router topology

FastAPI scaling report

Dependency & import guardrails

Policy modes

Fail-closed import checks

CLI & MCP integration

CLI first

MCP server (optional)

Policy-as-code

Preserve FastAPI API truth before you merge

MCP server (optional)

Span-first code truth

Dependency Firewall

Frequently Asked Questions

What is Ranex?

Does Ranex send my code to the cloud?

What is the difference between CLI, Python API, and MCP?

Do I need to run scan every time?

Where is the Atlas database stored?

How do I reset Ranex for a project?

How do I allow a new dependency?

Why does the firewall block standard library modules?

Ready to lock your FastAPI API?

Stop AI from silently breaking yourFastAPI API

Truth capsule for one endpoint

Truth capsule

Atlas architecture

Router topology

FastAPI scaling report

Dependency & import guardrails

Policy modes

Fail-closed import checks

CLI & MCP integration

CLI first

MCP server (optional)

Policy-as-code

Preserve FastAPI API truth before you merge

MCP server (optional)

Span-first code truth

Dependency Firewall

Frequently Asked Questions

What is Ranex?

Does Ranex send my code to the cloud?

What is the difference between CLI, Python API, and MCP?

Do I need to run scan every time?

Where is the Atlas database stored?

How do I reset Ranex for a project?

How do I allow a new dependency?

Why does the firewall block standard library modules?

Ready to lock your FastAPI API?

Stop AI from silently breaking your
FastAPI API

Stop AI from silently breaking your
FastAPI API