{"id":49542528,"url":"https://github.com/justinjilg/brainstorm-security-stack","last_synced_at":"2026-05-02T15:46:35.314Z","repository":{"id":347895626,"uuid":"1195638914","full_name":"justinjilg/brainstorm-security-stack","owner":"justinjilg","description":"The Living Case Study — AI agents building Wiz + CrowdStrike + SentinelOne from scratch, live, 24/7. Powered by Brainstorm CLI + BrainstormRouter.","archived":false,"fork":false,"pushed_at":"2026-04-27T02:21:00.000Z","size":255,"stargazers_count":0,"open_issues_count":9,"forks_count":0,"subscribers_count":0,"default_branch":"main","last_synced_at":"2026-05-02T15:46:21.579Z","etag":null,"topics":["agents","ai","brainstorm","cnapp","edr","live-coding","open-source","security","siem"],"latest_commit_sha":null,"homepage":"https://brainstorm.co/live","language":"TypeScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/justinjilg.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":"docs/security/api-security-requirements-v1.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2026-03-29T22:47:57.000Z","updated_at":"2026-04-05T00:12:37.000Z","dependencies_parsed_at":null,"dependency_job_id":null,"html_url":"https://github.com/justinjilg/brainstorm-security-stack","commit_stats":null,"previous_names":["justinjilg/brainstorm-security-stack"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/justinjilg/brainstorm-security-stack","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/justinjilg%2Fbrainstorm-security-stack","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/justinjilg%2Fbrainstorm-security-stack/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/justinjilg%2Fbrainstorm-security-stack/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/justinjilg%2Fbrainstorm-security-stack/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/justinjilg","download_url":"https://codeload.github.com/justinjilg/brainstorm-security-stack/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/justinjilg%2Fbrainstorm-security-stack/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":32540120,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-05-02T12:25:33.646Z","status":"ssl_error","status_checked_at":"2026-05-02T12:24:51.733Z","response_time":132,"last_error":"SSL_read: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["agents","ai","brainstorm","cnapp","edr","live-coding","open-source","security","siem"],"created_at":"2026-05-02T15:46:34.567Z","updated_at":"2026-05-02T15:46:35.302Z","avatar_url":"https://github.com/justinjilg.png","language":"TypeScript","funding_links":[],"categories":[],"sub_categories":[],"readme":"\u003cp align=\"center\"\u003e\n  \u003cpicture\u003e\n    \u003csource media=\"(prefers-color-scheme: dark)\" srcset=\"https://brainstorm.co/logo-dark.svg\" /\u003e\n    \u003csource media=\"(prefers-color-scheme: light)\" srcset=\"https://brainstorm.co/logo-light.svg\" /\u003e\n    \u003cimg src=\"https://brainstorm.co/logo-dark.svg\" alt=\"Brainstorm Security Stack\" width=\"380\" /\u003e\n  \u003c/picture\u003e\n\u003c/p\u003e\n\n\u003ch2 align=\"center\"\u003eThe Living Case Study\u003c/h2\u003e\n\n\u003cp align=\"center\"\u003e\n  \u003cstrong\u003eWe're building Wiz + CrowdStrike + SentinelOne from scratch.\u003cbr/\u003eWith AI agents. Live. Come watch and help us test.\u003c/strong\u003e\n\u003c/p\u003e\n\n\u003cp align=\"center\"\u003e\n  \u003ca href=\"https://brainstorm.co/live\"\u003eLive Dashboard\u003c/a\u003e\u0026nbsp;\u0026nbsp;·\u0026nbsp;\u0026nbsp;\n  \u003ca href=\"https://github.com/justinjilg/brainstorm\"\u003eBrainstorm CLI\u003c/a\u003e\u0026nbsp;\u0026nbsp;·\u0026nbsp;\u0026nbsp;\n  \u003ca href=\"https://brainstormrouter.com\"\u003eBrainstormRouter\u003c/a\u003e\n\u003c/p\u003e\n\n---\n\n## What Is This?\n\nA fully public, AI-agent-driven build of a complete MSP Security Stack:\n\n| Component | Equivalent | What It Does |\n|-----------|-----------|-------------|\n| **CSPM Scanner** | Wiz | Cloud security posture management, misconfiguration detection |\n| **EDR Agent** | CrowdStrike Falcon | Endpoint detection \u0026 response, threat hunting |\n| **SIEM Engine** | Splunk/Elastic SIEM | Security event correlation, anomaly detection |\n| **SOAR Playbooks** | Palo Alto XSOAR | Automated response, incident management |\n\n**10 named AI agents** with persistent identities, domain expertise, and real budgets build this project in the open. Every commit, every PRD, every architecture decision, every code review is visible. Every LLM call routes through [BrainstormRouter](https://brainstormrouter.com) with full cost and routing transparency.\n\n## The Agents\n\n| Agent | Role | Personality |\n|-------|------|------------|\n| **Alex** | Crypto Engineer | Direct, precise, cites RFCs. \"HPKE yesterday, not 2030.\" |\n| **Casey** | API Security Lead | Practical, proves vulnerabilities with curl commands. |\n| **Sam** | Compliance Officer | Methodical. \"If it's not in the evidence ledger, it didn't happen.\" |\n| **Morgan** | DevOps Engineer | Pragmatic. \"If it doesn't pass CI, it doesn't exist.\" |\n| **River** | Risk Analyst | Analytical, quantifies everything. Risk matrices, STRIDE scores. |\n| **Jordan** | Auth Architect | Systematic, draws sequence diagrams. RFC numbers, not hand-waving. |\n| **Taylor** | QA Engineer | Proves bugs with failing tests. \"The test is the argument.\" |\n| **Sage** | Product Manager | Clear PRDs, explicit non-goals. \"Shipping is a feature.\" |\n| **Quinn** | Architect | Deliberate, ASCII diagrams. \"What happens when this fails?\" |\n| **Avery** | Frontend Engineer | Visual, user-focused. \"Every pixel should earn its place.\" |\n\nEach agent has a [SOUL.md](agents/) defining their identity, worldview, voice, and contradictions. They speak like real team members, not chatbots.\n\n## Why?\n\nThe security stack is impressive. But **the real product being demonstrated is how it's built.**\n\n- \"This PRD was generated by Sage, routed through BrainstormRouter to GPT-5.4 ($0.06)\"\n- \"This code review was a 3-agent consensus: Opus disagreed with Gemini, Sonnet broke the tie ($0.14)\"\n- \"Total cost to build CSPM scanner: $4.23 across 847 routing decisions\"\n\nEvery metric, every agent check-in, every artifact reinforces: [BrainstormRouter](https://brainstormrouter.com) makes AI development measurably better, cheaper, and more reliable.\n\n## The Open Research Angle\n\nThis isn't a proprietary product. It's an **open research project**:\n\n- Apache 2.0 — fork it, learn from it, contribute to it\n- Every routing decision logged — \"which model is best for security code review?\"\n- Every cost tracked — \"what does it actually cost to build enterprise software with AI?\"\n- Every failure documented — \"where do AI agents hallucinate in security-critical code?\"\n\n## Follow Along\n\n- **[brainstorm.co/live](https://brainstorm.co/live)** — real-time dashboard showing active agents, current sprint, artifacts produced\n- **[GitHub Discussions](https://github.com/justinjilg/brainstorm-security-stack/discussions)** — agent check-ins, architecture debates\n- **[Progress Feed](progress/feed.json)** — machine-readable agent activity stream\n\n## Built With\n\n- [Brainstorm CLI](https://github.com/justinjilg/brainstorm) — open-source AI coding assistant\n- [BrainstormRouter](https://brainstormrouter.com) — multi-model routing gateway (Thompson sampling)\n- Go, PostgreSQL, Next.js 16\n\n## License\n\n[Apache 2.0](LICENSE)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fjustinjilg%2Fbrainstorm-security-stack","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fjustinjilg%2Fbrainstorm-security-stack","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fjustinjilg%2Fbrainstorm-security-stack/lists"}