Show HN: CanaryAI v0.2.5 – Security monitoring on Claude Code actions
jx887 Sunday, February 22, 2026
I've been using Claude Code a lot recently and wanted visibility into security-relevant executions — the kind of thing you may not necessarily catch while the agent is running.
CanaryAI is a macOS menu bar app that monitors Claude Code session logs and alerts on suspicious behaviour: reverse shells, credential file access, LaunchAgent/cron persistence, download-and-execute patterns, shell profile modification. It parses the JSON logs Claude Code writes locally — no interception, no proxying. Alert-only; it never blocks the agent.
All processing is local. Detection rules are YAML so can be expanded on.
> https://github.com/jx887/homebrew-canaryai
Let me know if you have any questions.
Summary
This repository contains a Homebrew tap for the Canary AI project, which provides a command-line interface for interacting with the Canary AI language model. The tap allows users to install and manage the Canary AI software on their macOS systems using the Homebrew package manager.
2
0
Summary
github.com