About Sandtrace
Sandtrace was born from a simple observation: the attacks targeting modern developers are increasingly sophisticated, but the tools available to detect them haven't kept up.
Supply chain attacks like SANDWORM_MODE don't just steal credentials — they poison AI coding assistants, hijack CI pipelines, and self-propagate using developer identities. The developers getting hit are indie devs, small teams, and open source maintainers who don't have enterprise EDR budgets.
We built Sandtrace because supply chain defense shouldn't be a luxury.
Built by Closed Circuit Inc
Closed Circuit Inc is a software development and security company. We build production software, security tools, and consulting services for companies that need to move fast without compromising on safety.
Sandtrace is open source under the MIT license. The CLI is free, forever. We believe the best security tools are the ones everyone can use.
Why Rust?
Sandtrace is built in Rust for three reasons:
- Speed — Full scans complete in seconds, not minutes. Developers won't use a tool that slows them down.
- Safety — Memory safety guarantees mean the security tool itself can't be exploited through buffer overflows or use-after-free bugs.
- Portability — Single binary, no runtime dependencies. Works on macOS, Linux, and Windows.
Open Source Philosophy
We could have kept Sandtrace internal. Many security companies would. But that's not how Closed Circuit operates.
The developers getting hit by supply chain attacks deserve tools that protect them. Free. Open. No strings. The cloud product exists for teams that need centralized visibility, but the core detection engine will always be open source.