A newer version of the Gradio SDK is available: 6.19.0
title: OpenMythos
emoji: π‘οΈ
colorFrom: gray
colorTo: indigo
sdk: gradio
sdk_version: 6.18.0
python_version: '3.13'
app_file: app.py
pinned: true
short_description: An Open Source Cyber Security Agent
license: apache-2.0
tags:
- gradio
- build-small-hackathon
- backyard-ai
- track:backyard
- sponsor:modal
- achievement:offbrand
- achievement:welltuned
- achievement:fieldnotes
- achievement:offgrid
OpenMythos π
Paste your codebase. Our AI security agent audits the repository a multi-level vulnerability analysis, a visual dependency risk path, a declared threat level then generates an instant, verifiable hotfix patch before threat actors can exploit it.
Built during the Hugging Face Small Gradio Hackathon OpenMythos democratizes cutting-edge security auditing. It bridges an immersive retro terminal interface with the elite agentic reasoning and long-context preservation architecture of a fine-tuned dense model.
β οΈ Proactive Defense. This platform is engineered for defensive security intelligence. It aims to discover flaws, memory leaks, security configurations, and input bugs instantly, empowering software engineering teams to deploy hotfixes long before a threat vector is weaponized.
βΆοΈ See it in action
- Demo Video: https://www.youtube.com/watch?v=EQyHawWfyZ0
- Social Post: X Linkedin Reddit
- Blog Post: https://huggingface.co/blog/KingNish/openmythos
ποΈ Hackathon Categories
| Category | Why OpenMythos Qualifies |
|---|---|
| Main Track: Backyard AI | Solves a real, specific problem for real people: software teams need instant security auditing. The person is every developer who ships code and wants to catch vulnerabilities before attackers do. |
| π Off the Grid | 100% Local & Privacy-First. The entire pipeline runs with zero cloud API dependencies just a local model endpoint. Your code never leaves your machine. |
| π― Well-Tuned | Built on a Qwen3.6-27B base fine-tuned via SFT on cybersecurity dataset. The fine-tuned model: https://huggingface.co/build-small-hackathon/OpenMythos |
| π¨ Off-Brand | Fully custom terminal-inspired UI all pushing far past the default Gradio look. |
Bonus Quests
| Badge | Status | Notes |
|---|---|---|
| π Off the Grid | β Earned | Local-first by design |
| π― Well-Tuned | β Earned | SFT on cybersecurity data; model to be published |
| π¨ Off-Brand | β Earned | Custom CSS, SVG, terminal theme |
| π Field Notes | β Earned | Blog post: https://huggingface.co/blog/KingNish/openmythos |
Why it's worth a look
- π 100% Local & Privacy-First. Designed as a fully open-source alternative to proprietary security intelligence layers (like Claude's Mythos model). It can be run entirely locally, requiring zero internet connectivity or external dependencies to operate.
How it works
A multi-stage engineering pipeline built around aggregated, industry-standard security sources:
| Stage | Role | Source Data / Methodology |
|---|---|---|
| 1 | Data Prep & Aggregation | Incident reports, GitHub Advisory, VulnHub, and papers. Rigorously trained on BigVul-Filtered and Arvix-Filtered sets. |
| 2 | Initial Fine-Tuning (SFT) | Supervised Fine-Tuning on cybersecurity tasks. Qwen3.6-27B Base (Up to 32K+ token context window). |
The entire pipeline leverages highly specialized weights to ensure an elite vulnerability discovery rate. No massive API dependencies anywhere: a clever chain of targeted engineering delivers the whole security suite.
π€ Project Contributors
Developed with β€οΈ during the Hugging Face Small Gradio Hackathon by:
- KingNish β HuggingFace Profile
- Himanshu β HuggingFace Profile
Built for the Build Small Hackathon. Model: OpenMythos Β· Dataset: CVE Vulnerabilities Detailed Β· ArXiv cs.CR Filtered Β· Space: OpenMythos