JSPM

aicopycheck

1.0.0
  • ESM via JSPM
  • ES Module Entrypoint
  • Export Map
  • Keywords
  • License
  • Repository URL
  • TypeScript Types
  • README
  • Created
  • Published
  • Downloads 7
  • Score
    100M100P100Q65498F
  • License MIT

Scan your codebase for AI-generated code. Know your copyright risk before it becomes a legal problem.

Package Exports

  • aicopycheck
  • aicopycheck/lib/scanner.js

This package does not declare an exports field, so the exports above have been automatically detected and optimized by JSPM instead. If any package subpath is missing, it is recommended to post an issue to the original package (aicopycheck) to support the "exports" field. If that is not possible, create a JSPM override to customize the exports field for this package.

Readme

aiscan — AI-Generated Code Copyright Risk Scanner

npm version npm downloads license

Scan your codebase for AI-generated code. Know your copyright risk before it becomes a legal problem.

"Who owns the code Claude Code wrote?" — 373 points on Hacker News. This is the answer.

Quick Start

npx aiscan .                  # Scan current directory
npx aiscan ./src --json       # JSON output
npx aiscan . --html --output report.html  # HTML report

Why aiscan?

AI coding tools (Claude Code, Copilot, Cursor, ChatGPT) are amazing — but they create a legal gray area:

  • Copyright law is unclear on AI-generated code ownership
  • GPL/copyleft licenses may conflict with AI training data origins
  • Enterprise compliance increasingly requires AI code disclosure
  • Due diligence for funding/M&A now includes AI code audits

aiscan gives you a first-pass risk assessment in seconds.

What It Detects

Category Examples
AI Tool Attribution "Generated by Claude", "Created with Copilot", Cursor markers
Copy-Paste Artifacts "As an AI", "I apologize", LLM conversation remnants
Code Patterns Excessive comment ratios, empty TODO/FIXME placeholders, generic variable clusters
License Conflicts Missing license headers, GPL on AI-generated code, proprietary notices
Vibe Coding References Self-declared vibe-coded or AI-assisted files

Usage

aiscan [directory] [options]

Options:
  --json           JSON output (for CI/CD pipelines)
  --html           HTML report with visual risk dashboard
  --output <path>  Save report to file
  --ignore <pat>   Additional regex ignore pattern
  --ext <ext>      Additional file extension to scan
  --help, -h       Show help

Exit codes:
  0  Low risk
  1  Medium risk — review recommended
  2  High/critical risk — compliance concerns

GitHub Actions

- name: AI Code Scan
  run: npx aiscan . --json --output aiscan-report.json
- name: Upload Report
  uses: actions/upload-artifact@v4
  with:
    name: aiscan-report
    path: aiscan-report.json

Configuration

Create .aiscanrc.json in your project root:

{
  "ignore": ["src/generated/", ".*\\.generated\\.ts$"],
  "extensions": [".vue", ".svelte"],
  "format": "json"
}

Supported Languages

JavaScript, TypeScript, Python, Go, Rust, Java, Kotlin, Swift, C/C++, C#, Ruby, PHP, Scala, Clojure, Elm, Haskell, Nim, Zig, Vue, Svelte, Solidity, Shell, SQL, R, Julia, Lua, Elixir, Erlang, Dart, Groovy, Terraform, YAML, TOML, JSON, XML, Markdown, CSS/SCSS/Less, HTML, and more.

Install

npm install -g aiscan

Or use npx aiscan for zero-install runs.

Why Trust It?

  • Zero dependencies — pure Node.js, no supply chain risk
  • Runs offline — your code never leaves your machine
  • Transparent rules — every detection pattern is documented in lib/patterns.js

Support

This tool is free for individual developers. For team licensing, priority support, and compliance reporting, visit aiscan.dev.

Built by an indie developer. Sponsor on 爱发电 if this tool saved you from a legal headache.