Blue Spec

Blue Spec runs on Node.js, you use whatever stack you want.

A five-phase, Blue Team-based flow, ready to run.

It detects what your system actually does, maps the matching attack vectors, then drives the security work that fits.

37 agents and any language: Claude Code, Codex, Cursor, Gemini, and more. No lock-in.

Initialize Blue Spec with your agent of choice and it sets up the right command files and conventions, ready to run in your project.

Focused security modules load only for what your project is, never a generic flood.

It pulls in the module that fits the context it finds, drawing from a catalog that keeps growing as new risks emerge.

A risk proven closed is stood down across the whole chain, not parked in a backlog.

Each finding reaches a settled state and reopens only when the code changes, so the flow can reach a real end.