Dev Machine Guard Is Now Open Source: See What's Really Running on Your Developer Machine

StepSecurity has open-sourced Dev Machine Guard, a bash script that inventories the developer tooling layer on macOS machines — including IDE extensions, MCP server configurations, AI coding agents, and globally installed npm packages. The tool addresses a visibility gap that traditional EDR solutions miss: the developer-specific attack surface where supply chain attacks often begin. It runs locally with no dependencies, outputs results as terminal text, JSON, or HTML, and requires no data to leave the machine in community mode. An enterprise mode sends scan data to StepSecurity's backend for centralized fleet visibility. The project is Apache 2.0 licensed and motivated by real-world incidents like the Shai-Hulud npm campaign and the Nx build system compromise.