Ranex
107 Total Features • 84 Production-Ready

Everything you need for AI governance

Drop-in binary with embedded ONNX model, tokenizer, and personas. Zero external dependencies. Production-ready from day one.

84
Production features
9
Feature-gated
71ns
Avg latency
0
Dependencies

Security Scanning

7 SAST + 5 antipattern rules

Enterprise-grade static analysis with real-time CVE detection and antipattern enforcement.

7
SAST patterns
14
SQL injection rules
71ns
Scan latency
100%
OSV.dev coverage

SAST Scanner

Production

7 patterns for SQL injection, command injection, secrets, weak crypto, and more.

src/security/scanner.rs

SQL Injection Detection

Production

14 patterns detecting f-string queries, .format() concatenation, and raw SQL.

14 pattern rules

Command Injection Detection

Production

Detects subprocess.shell=True, os.system, os.popen, and eval() patterns.

Built-in patterns

OSV Dependency Scanner

Production

Real-time CVE detection via osv.dev API integration for Python dependencies.

src/security/dependency_osv.rs

Antipattern Detector

Production

Ranex-specific rules for architecture violations, forbidden folders, layer breaches.

src/security/antipattern.rs

Secret Detection

Production

Detects hardcoded API keys, passwords, tokens, and connection strings.

Pattern-based scanning

Contract System

Cryptographic verification

Blake3 hash chains with Ed25519 signatures for tamper-proof audit trails.

<100ns
FFI validation
Blake3
Hash algorithm
Ed25519
Signatures
100%
Pydantic support

FFI Type Validation

Production

PyO3 bindings with sub-100ns target latency for real-time validation.

src/contract/ffi_validator.rs

Schema Validation

Production

Full JSON Schema support with Pydantic model_json_schema() integration.

src/contract/schema_validator.rs

Pydantic Integration

Production

Native support for Pydantic v2 models with automatic schema extraction.

register_schema() API

Cryptographic Audit Trail

Production

Blake3 hash chain with Ed25519 signatures for enterprise compliance.

src/contract/audit.rs

Audit Integrity Verification

Production

verify_integrity() method with tamper detection and chain validation.

Built-in verification

State Machine

YAML-based workflow control

Define valid state transitions in YAML and enforce them at runtime with zero overhead.

YAML
Configuration
0ms
Overhead
States supported
Multi-tenant
Isolation

YAML-based State Machine

Production

Define states and transitions in app/features/{feature}/state.yaml files.

src/validation/state_machine.rs

Transition Validation

Production

transition() method validates against allowed transitions at runtime.

Built-in validation

Multi-Tenant Isolation

Production

Per-tenant state machines via feature+tenant key for SaaS applications.

Tenant key support

CLI & MCP Tools

8 commands, 10 MCP tools

Drop-in binary with embedded ONNX model, tokenizer, and personas. Zero external dependencies.

8
CLI commands
10
MCP tools
~4MB
CLI binary
0
Dependencies

ranex init

Production

Creates .ranex/, .windsurfrules, and MCP configuration files.

CLI command

ranex scan

Production

Security + architecture scan with cryptographic attestation.

CLI command

ranex arch

Production

Architectural layer verification against defined rules.

CLI command

ranex fix

Production

Auto-remediate violations with intelligent suggestions.

CLI command

ranex doctor

Production

System health check for configuration and dependencies.

CLI command

ranex-cli (Rust)

Production

Pure Rust binary for regulated environments - untamperable.

src/bin/ranex_mcp.rs

Core Infrastructure

Production-grade foundations

Structured logging, Prometheus metrics, error aggregation, and panic handling.

10+
Core features
JSON
Log output
Prometheus
Metrics
OnceLock
Thread-safe

Structured Logging

Production

Full tracing-subscriber integration with JSON output format.

src/core/logging/init.rs

Log Rotation

Production

Size and time-based rotation with configurable thresholds.

src/core/logging/rotation.rs

Log Sanitization

Production

9 regex patterns for PII and secrets redaction.

src/core/logging/sanitization.rs

Prometheus Metrics

Production

metrics-exporter-prometheus integration with auto-recording.

src/core/metrics/metrics.rs

Error Aggregation

Production

Statistics, rate calculation, and error type tracking.

src/core/errors/aggregation.rs

Panic Handler

Production

Full backtrace logging with graceful error recovery.

src/core/logging/init.rs:207-258

RAG Infrastructure

Embedded AI model

All-MiniLM-L6-v2 ONNX model compiled INTO the binary. Zero setup for users.

87MB
ONNX model
456KB
Tokenizer
7
Personas
SQLite
Vector DB

Embedded ONNX Model

Feature-gated

All-MiniLM-L6-v2 compiled into binary via include_bytes!().

src/rag/embedded.rs:27

Embedded Tokenizer

Feature-gated

Tokenizer JSON compiled into binary for zero-setup usage.

src/rag/embedded.rs:31

Vector Database

Feature-gated

SQLite-based vector storage with cosine similarity search.

src/rag/vector_db.rs

Embedding Cache

Feature-gated

LRU cache for query embeddings to reduce computation.

src/rag/cache.rs

7 Built-in Personas

Feature-gated

ranex_architect, python_engineer, fastapi_contributor, and more.

Embedded in binary

Machine Learning

Native ML pipeline

Logistic regression classifier with TF-IDF features, training pipeline, and model persistence.

Native
Rust ML
TF-IDF
Features
JSON
Persistence
F1/Precision
Metrics

Logistic Regression

Production

Full gradient descent implementation in pure Rust.

src/ml/classification.rs

Training Pipeline

Production

Early stopping, checkpointing, and validation splits.

src/ml/training.rs

TF-IDF Feature Extraction

Production

Vocabulary building and IDF computation for text features.

src/ml/features.rs

Dataset Management

Production

Train/test/validation splits with stratification.

src/ml/dataset.rs

Model Persistence

Production

JSON serialization for model checkpoints and deployment.

src/ml/persistence.rs

Classification Metrics

Production

Accuracy, precision, recall, F1, and confusion matrix.

Built-in metrics

Database Support

Multi-database introspection

PostgreSQL, MySQL, and SQLite support with schema validation and SQL parsing.

3
Databases
AST
SQL parsing
Schema
Introspection
Pooling
Connections

PostgreSQL Support

Production

Full schema introspection with scan_postgres().

src/database/schema.rs

MySQL Support

Production

scan_mysql() with connection pooling.

src/database/schema.rs

SQLite Support

Production

scan_sqlite() with PRAGMA introspection.

src/database/schema.rs

SQL Validation

Production

validate_query() with sqlparser AST validation.

Built-in validation

CLI Integrity System

Tamper detection

BLAKE3 hash verification and Ed25519 attestations for regulated environments.

BLAKE3
Hash verification
Ed25519
Attestations
Exit 78
Strict mode
--strict
Flag

IntegrityRegistry

Production

BLAKE3 hash verification for Python CLI files.

src/cli/integrity/registry.rs

AttestationEngine

Production

Ed25519 signed attestations proving scan completion.

src/cli/integrity/attestation.rs

CLI Hash Verification

Production

Verifies Python CLI files at startup before execution.

Built-in verification

Strict Integrity Mode

Production

--strict flag with exit code 78 (EX_CONFIG) on violation.

CLI flag
✦ Zero-setup deployment

Drop-in binary architecture

Everything embedded INTO the binary. Users just pip install and go.

ranex_core wheel (~90MB)
ONNX Model
All-MiniLM-L6-v2
87MB
Tokenizer
JSON embedded
456KB
Personas
7 built-in
~50KB
// Zero setup installation
$ pip install ranex_core-0.0.1-*.whl
// Everything included, ready to use
$ ranex init
$ ranex scan

Ready to get started?

Install Ranex in seconds and start validating AI-generated code immediately.

Read the docsView pricing