APEX — Autonomous Path EXploration
Find vulnerabilities. Fix coverage gaps. Automatically.
APEX is a Claude Code plugin that scans your codebase for security gaps, dead code, and untested branches — then writes the tests to fix them. 63 detectors, 11 languages, zero config. Works as both a CLI tool and a set of AI agents inside Claude Code.
Validated against: Linux kernel · Kubernetes · CPython · TypeScript compiler · ripgrep · Spring Boot · .NET Runtime · Vapor · Rails · ktor
Found a hardcoded EC private key in Kubernetes (CWE-798). Scanned the Linux kernel in 4 minutes. 0 crashes across 12,656 findings.
Quick Start
1. Install the binary
# macOS / Linux (auto-detects platform, no sudo needed)
curl -LsSf https://github.com/sahajamoth/apex/releases/latest/download/apex-cli-installer.sh | sh
# Windows
powershell -ExecutionPolicy ByPass -c "irm https://github.com/sahajamoth/apex/releases/latest/download/apex-cli-installer.ps1 | iex"
Alternative install methods
# From source (needs Rust toolchain, ~5 min)
cargo install --git https://github.com/sahajamoth/apex
# Nix
nix run github:sahajamoth/apex
Package registry publishing (npm, Homebrew, pip) coming soon.
2. Install the Claude Code plugin
# Add the APEX marketplace (GitHub repo)
claude plugins marketplace add sahajamoth/apex
# Install the APEX plugin from it
claude plugins install apex@apex
Or from a local clone:
git clone https://github.com/sahajamoth/apex.git
claude plugins marketplace add ./apex
claude plugins install apex@apex
3. Run
# In Claude Code:
/apex init # Auto-detect language, venv, toolchain
/apex # Full analysis: coverage + security + intelligence
/apex detect # Security scan (63 detectors, 40+ CWEs)
/apex hunt # Bug hunting in uncovered code
/apex deploy # Deploy readiness score
APEX agents detect your environment, install missing tools (via uv, bun, mise), run coverage, write tests, and produce reports.
Not using Claude Code? See Standalone Installation for CLI binary, GitHub Actions, and CI/CD setup.
What APEX Finds in Real Projects
The output below is from Claude Code running the
/apexcommand. APEX agents orchestrate the full analysis cycle automatically.
> /apex
╭──────────────────────────────────────────────────╮
│ APEX — Autonomous Path EXploration │
│ Target: ./your-project (Python, 847 branches) │
╰──────────────────────────────────────────────────╯
Round 1/5 ─────────────────────────────────────────
Coverage: 62% → 71% (+9%)
+142 branches covered | 203 remaining | 8 tests written
Round 5/5 ─────────────────────────────────────────
Coverage: 71% → 94% (+23%)
Final: 798/847 branches covered
Tests written: 31 new tests across 6 files
Then ask Claude for intelligence:
> /apex intel
┌─ Test Optimization ──────────────────────────────┐
│ 312 tests → 94 minimal set (3.3× speedup) │
│ 218 tests are redundant — same branch coverage │
└──────────────────────────────────────────────────┘
┌─ Dead Code ──────────────────────────────────────┐
│ 23 branches in 4 files — never executed by any │
│ test or production path │
│ │
│ src/billing.py:89 unreachable after refactor │
│ src/export.py:34 legacy XML path, 0 callers │
│ src/api.py:201 dead error handler │
└──────────────────────────────────────────────────┘