I Built a Security Scanner That Uses AI to Review Its Own Findings

Every AI coding tool ships code fast. None of them check if it's safe. I built Critik - an open-source security scanner that catches what your AI writes and your review misses. Regex and AST find the candidates. An LLM reviews each one with full file context, confirms the real problems, kills the false positives, and explains why in plain English. pip install critik and you're scanning in 30 seconds. The Numbers Are Ugly 53% of teams that shipped AI-generated code later found security issues that passed review.