Skip to main content
Immunisense
immunisenseControl Your Sense

Secure AI Coding Assistant

The AI that senses what your code needs - before you ask. Spec-driven planning, safe code execution, proxy-backed model access, and multi-agent orchestration - all in one beautiful TUI. Zero API keys. Enterprise-grade security.

sensai-cli
$ curl -fsSL https://sensai.immunisense.com/install | bash
✓ SensAI installed successfully
$ sensai-cli auth login
◇ Authenticated · Sense tier · 4,000 credits
$ sensai-cli
◇ Code · Grok 4.20 · High (Sense)
Terminal-First

The Only CLI That Unifies Security · Intelligence · Speed

Other AI coding tools expose your API keys, stuff MCP descriptions into prompts, and lack real planning workflows. SensAI is the first terminal assistant to converge enterprise-grade security, multi-agent intelligence, and spec-driven planning into a single binary.

SECURE
Zero-Key Architecture

All LLM traffic through an audited proxy. Zero raw API keys. OAuth + OS keyring. Pre-flight secrets scanning on every request.

INTELLIGENT
Multi-Agent Orchestration

Conductor + sub-agents (Architect, Coder, Tester, Reviewer) with parallel collaboration, 9 LSP tools, and AST structural search.

FAST
Sub-Second Startup

Cache-first catalog, lazy agent building, cached models, and concurrent splash - warm launches in under a second.

All in one binary. No other CLI does this.
Why SensAI

Why Choose

Core capabilities that give developers an unfair advantage

Core
v1.0

Audit-Grade Reasoning

Security Mode · Sense Protocol

Authorized defensive audits under the Sense Protocol. 7-phase EARS flow, read-only by default, evidence-graded findings, threat-intel correlation, and SARIF/Mermaid dossiers. Paid add-on for eligible Sense Pro subscribers.

Core
Zero

Exposed API Keys

Zero-Key Security

All LLM traffic routed through an audited proxy. OAuth + OS keyring authentication. Pre-flight secrets scanning catches leaks before they leave your machine.

Concurrent Agents

Multi-Agent Teams

Conductor orchestrates Architect, Coder, Tester, and Reviewer sub-agents in parallel. Create custom agents from markdown with AI-powered generation.

Phase Workflow

Spec-Driven Planning

Requirements → Design → Tasks with strict approval gates, auto-generated Mermaid diagrams, and TDD plans. Run all tasks or execute manually one by one.

LSP Tools

LSP + AST Intelligence

Semantic navigation with definition, references, hover, rename, code actions, and more. Plus ast-grep structural search across 18 languages.

25+

Languages

Auto-Formatter

Automatic formatting after every agent write with a 3-step fallback: custom → LSP → 25+ built-in CLI formatters including Prettier, Black, gofumpt, and more.

Full

Undo Support

Conversation Checkpoints

Automatic per-turn snapshots of file changes. Restore to any point in the conversation, reverting all modifications and truncating history atomically.

Zero

Tool Overhead

Chat Mode

Freeform conversation mode with no tool calls. Perfect for brainstorming, architecture discussions, and code review without any execution overhead.

Compression Levels

Token Compression

Lite, full, and ultra compression modes reduce output verbosity and context size. Dramatically lower credit consumption on long sessions.

Importable Skills

Skills & Rules

Discover and manage Skills with enable/disable toggle, GitHub import, and local folder import. Rules management for context rule files with per-session control.

Auto

Context Loading

SENSAI.md Priority Chain

Checks SENSAI.md first, then AGENTS.md - only the first found is loaded. DESIGN.md always loads as additive context. Use /create-sensai to generate from existing AI config files.

Platform Features

SensAI

From planning to execution, SensAI gives your AI agent the deepest toolkit of any terminal assistant.

Requirements ✓
Design ✓
Tasks →

Spec-Driven Plan Mode

Three-phase planning: Requirements (EARS notation) → Design (Mermaid diagrams, TDD) → Tasks (granular, file-by-file). Strict approval gates with diff previews. Run All for automatic execution or Run Manually for step-by-step control.

Learn more
READ-ONLY

Safe Analysis Mode

Read-only deep codebase exploration with worktree-style isolation. Investigate safely without any risk of file changes.

Explore
discover_mcp_tools()
circuit: CLOSED ✓
health: 60s ping
audit: enabled

Smart MCP Integration

Dynamic capability discovery - not prompt stuffing. Circuit breaker protection, rate limiting, health monitoring, response scanning, and audit logging.

Configure
Architect
Coder
Tester
Reviewer

Multi-Agent Orchestration

Conductor coordinates Architect, Coder, Tester, and Reviewer sub-agents with parallel tool calls and credit-guarded execution. Create custom agents from markdown files with AI-powered generation. Up to 4 concurrent agents.

View agents
lsp_definition → src/auth.go:42
lsp_references → 7 found
lsp_hover → func Login()
lsp_diagnostics → 0 errors

9 LSP Tools

Definition, references, hover, symbols, rename, code actions, formatting, diagnostics, and restart. Delta-aware feedback after every edit.

See tools
pattern: func $F($$$) error
18 languages supported

AST Structural Search

ast-grep powered pattern matching across 18 languages. Find function signatures, error handling patterns, and API usage by code structure - not text.

Try it

Conversation Checkpoints

Automatic per-turn snapshots with full undo. Restore to any point - files revert, history truncates. TUI shows [ Restore ] on every message.

Learn more
◇ Chat Mode
◇ Code Mode

Chat Mode

Zero-tools conversation mode for freeform discussion, architecture brainstorming, and code review without execution overhead. Switch instantly between Chat and Code modes.

Try Chat Mode
lite: -20%
full: -45%
ultra: -70%

Token Compression

Three compression levels - lite, full, ultra - reduce output verbosity and context size. Cut credit consumption on long sessions without losing quality.

Configure
skill: react-patterns ✓
skill: go-idioms ✓
rule: no-any.md ✓

Skills & Rules Management

Discover and manage Skills with enable/disable toggle, GitHub import, and local folder import. Rules management for context rule files with per-session control. Import from any public GitHub repo.

Browse Skills
SENSAI.md ✓
AGENTS.md (fallback)
DESIGN.md ✓ (additive)

SENSAI.md Priority Chain

SENSAI.md loads first, then AGENTS.md as fallback. DESIGN.md always loads as additive context. Use /create-sensai to generate from CLAUDE.md, GEMINI.md, or other AI config files.

Learn more
Model Catalog

Available

Powered by xAI Grok and Anthropic Claude through the SensAI proxy. Toggle Sense Mode for extended context windows up to 2M tokens.

Filter by provider
ReasoningNon-reasoningMulti-agentSense Mode context available

Grok Code Fast

xAI
Non-reasoning
Base
256K
Sense

Grok 4.1 Fast (Non-Reasoning)

xAI
Non-reasoning
Base
128K
Sense
2M

Grok 4.1 Fast

xAI
Reasoning
Base
128K
Sense
2M

Grok 4 Fast

xAI
Reasoning
Base
128K
Sense
2M

Grok 4.20 (Non-Reasoning)

xAI
Non-reasoning
Base
200K
Sense
2M

Grok 4.20

xAI
Reasoning
Base
200K
Sense
2M

Grok 4.20 (Multi-Agent)

xAI
Multi-agent
Base
200K
Sense
2M

Grok 4.3

xAI
Reasoning
Base
200K
Sense
1M

Claude Haiku 4.5

Anthropic
Non-reasoning
Base
200K
Sense

Claude Sonnet 4.6

Anthropic
Reasoning
Base
200K
Sense
1M

Claude Opus 4.6

Anthropic
Reasoning
Base
200K
Sense
1M

Claude Opus 4.7

Anthropic
Reasoning
Base
200K
Sense
1M
New · Security Mode · Sense Protocol v1.0

Introducing

A specialized high-tier audit mode operating under the Immunisense Sense Protocol v1.0. Authorized defensive vulnerability discovery, risk analysis, and remediation planning inside SensAI's auditable workflow. Available as a paid add-on for eligible Sense Pro subscribers.

Sense Pro Add-On
Sense Protocol v1.0

Authorized defensive audits. Evidence before severity.

Security Mode swaps the standard coding agent for the Sense Protocol - a reasoning contract trained on authorized vulnerability discovery, threat modeling, and responsible remediation. Every tool call runs under a strict read-only policy by default, with separate approval gates for discovery, verification, remediation, and any fix execution.

7-phase EARS-tracked audit flow
Read-only enforced by default
Confirmed · Likely · Needs Verification grading
CISA KEV · NVD · ATT&CK · EPSS correlation
Mermaid diagrams for every attack path
SARIF findings + JSON + exec dashboard
OWASP · NIST · ISO · GDPR mapping
Coordinated disclosure for novel CVEs

Eligibility: active Sense Pro subscription · verified organization · signed rules of engagement · admin approval.

Tool Policy · Default

Read-Only Enforcement

Every tool invocation is validated against the Sense policy before dispatch. Write-class tools are denied at the runtime boundary and only become available if a fix phase is explicitly approved under an active engagement.

read_file
allowed
grep_search
allowed
ast_grep
allowed
lsp_* (read)
allowed
write_file
blocked
shell_exec
blocked
edit / refactor
blocked
network / mcp write
blocked
$ sensai-cli --mode security audit
◇ Sense v1.0 · read-only policy enforced
◇ worktree isolated · audit log streaming
◇ scope confirmed · narrative initialized
Operating Contract

Seven non-negotiable rules

The Sense Protocol ships with an enforced behavioral contract. The agent cannot override it - every audit session observes these rules end-to-end.

RULE 01

Authorization first

Confirms scope, targets, exclusions, test intensity, network limits, destructive-check policy, and compliance mappings before audit work begins.

RULE 02

Read-only first

Safe analysis is the default. Remediation diffs and tests are proposed, never written - unless a fix phase is explicitly approved.

RULE 03

Evidence before severity

Every candidate finding is graded Confirmed, Likely, Needs Verification, or Informational. No claim ships without evidence.

RULE 04

Defensive boundaries

No credential theft, stealth, persistence, destructive exploitation, public disclosure, or weaponized chains. Minimal proof only.

RULE 05

Threat intelligence

Correlates findings with CISA KEV, NVD, CWE, MITRE ATT&CK, Exploit-DB, EPSS/CVSS, and known campaign TTPs when tools permit.

RULE 06

Visual reasoning

Produces Mermaid diagrams for attack surface, trust boundaries, data flows, and major attack paths on every audit report.

RULE 07

Approval gates

Discovery, verification, remediation proposal, and fix execution are separated - each gated by explicit user approval.

Audit Flow

Seven phases. One signed audit dossier.

Intake to reporting is gated by explicit user approval. No phase advances silently.

P00

Intake

Rules of engagement and requirements captured in EARS notation. Scope, targets, exclusions, destructive-check policy locked in.

approval gate
P01

Recon

Architecture modeling from safe read-only tools. Assets, trust boundaries, data flows, and system surface enumerated.

approval gate
P02

Discovery

Systematic sweep across code, config, dependencies, auth, data flow, secrets, permissions, supply chain, and deployment surfaces.

approval gate
P03

Verification

Chaining analysis and threat-intel correlation. Candidates are verified and promoted to Confirmed or downgraded with evidence.

approval gate
P04

Remediation

Root cause, remediation proposal, security tests, and validation steps - staged behind an approval gate before any fix is applied.

approval gate
P05

CVE Review

Novel vulnerability assessment and responsible-disclosure notes when a finding may warrant coordinated disclosure.

approval gate
P06

Reporting

Final dossier: Markdown narrative, Mermaid diagrams, SARIF-shaped findings, JSON summary, executive dashboard, compliance mapping.

approval gate
Structured Output

Finding Schema

Every finding is emitted with a consistent shape. Reports include Markdown, Mermaid, SARIF-compatible JSON, executive dashboard, and compliance mapping.

01ID · Title
02Severity · Confidence
03Affected asset · File · Line
04CWE · CVE · CVSS · EPSS
05Attack path · Impact
06Proof / reproduction notes
07Remediation · Tests · Residual risk
MarkdownMermaidSARIFJSONExec Dashboard
Sub-Agent Contracts

Specialized security roles

Sense orchestrates specialized roles and merges their outputs into a single evidence ledger. Nothing lands in the dossier without provenance.

Static Hunter
Semantic and AST sweeps across source trees and configuration.
Dynamic Verifier
Minimal-proof runtime validation within authorized bounds.
Threat Intel Analyst
Correlates candidates with KEV, NVD, ATT&CK, and EPSS.
Exploit Chain Researcher
Maps chained primitives into realistic attack paths.
Remediation Engineer
Proposes targeted diffs, regression tests, and rollout plan.
CVE & Disclosure Specialist
Handles novel findings and coordinated disclosure paths.
Compliance Mapper
Maps findings to OWASP, NIST, ISO, GDPR, and sector frames.
Credit-Based Billing

Simple

Three balance buckets consumed in order: tier → bonus → top-up. Only tier credits reset each billing cycle.

Free

$0

forever free

50

credits/month

  • 50 credits/month
  • Grok Code Fast model
  • Non-reasoning only
  • 256K context window

Pro

$20

/month

500

credits/month

  • 500 credits/month
  • All models
  • All reasoning levels
  • Up to 2M context (Sense)
Popular

Ultra

$40

/month

1,500

credits/month

  • 1,500 credits/month
  • All models
  • All reasoning levels
  • Up to 2M context (Sense)

Sense

$100

/month

4,000

credits/month

  • 4,000 credits/month
  • All models
  • All reasoning levels
  • Up to 2M context (Sense)
Security Eligible

Sense Pro

$200

/month

10,000

credits/month

  • 10,000 credits/month
  • All models
  • All reasoning levels
  • Up to 2M context (Sense)
  • Eligible for Security Mode add-on
Paid Add-On

Security Mode

Specialized high-tier audit mode powered by the Sense workflow and enforced read-only tool policy. Requires an active Sense Pro subscription.

Sense audit reasoning loop
Read-only enforced tool policy
OWASP · NIST · ISO · GDPR mapping
Signed, exportable audit dossier
Priority proxy with audit logging
Isolated worktree by default
$100

/month

Billed alongside Sense Pro

Flat rate · no annual discount

Eligibility: active Sense Pro subscription · verified organization · admin approval required before provisioning.

Get Started

Ready to Sense Your Code?

Install in one command. Authenticate with your browser. Start coding with the most secure AI assistant ever built for the terminal.

$ curl -fsSL https://sensai.immunisense.com/install | bash