Software supply chain attacks are rising. Most teams scan for CVEs but ignore build integrity and provenance. Wisec fixes this: → ED25519 cryptographic signatures on every build → Immutable provenance on IPFS → Behavioral anomaly detection (new deps, unknown contributors, hardcoded secrets...) → Real-time risk scoring dashboard 🛠️ 1 agent. 1 line in your pipeline. No source code stored. 🇫🇷 Built by a solo DevOps engineer. 🎁 Free plan available - no credit card required.

Littlebird — The only full-context AI

The only full-context AI

Hi hunters! 👋

I'm Thomas, founder of Wisec — and a solo builder.

I spent years in DevOps watching teams trust their dependencies blindly, until something broke. With AI-generated code and supply chain attacks on the rise, the "trust by default" model is dead.

So I built Wisec - alone, from France, from idea to production. An agent you add in one line to your GitLab CI or GitHub Actions pipeline. It cryptographically signs every build (ED25519), stores provenance immutably on IPFS, and detects behavioral anomalies before they reach production. No source code is ever stored — Wisec only analyzes build metadata and cryptographic signatures.

Launched 48h ago on LinkedIn → 850+ DevOps & security professionals reached organically. Free plan available, no credit card required.

I'm here all day to answer any technical questions - especially on the ML detection logic and the IPFS provenance model.

Brutal feedback is more than welcome. 🙏