Skip to main content
Root.io integrates with AI coding assistants to automatically detect and patch vulnerabilities as you code. When you edit package manifests (package.json, pom.xml, requirements.txt, etc.), your AI assistant checks for available Root.io patches and offers to apply them.

Prerequisites

Before setting up any AI integration, you need:
  1. Root.io account and API key - See Authentication for setup instructions
  2. rootio_patcher CLI installed - See Root Patcher CLI for installation
  3. Package registry configured - See Getting Started with RLC for npm, pip, and Maven configuration

Supported Platforms

PlatformDetection MethodInstallation Type
Claude CodeAutomatic (PostToolUse hook)Plugin + Hook + Skill
CodexAutomatic (plugin)Marketplace registration
GitHub Copilot and Cursor integrations coming soon.

How It Works

Once configured, your AI assistant automatically:
  1. Detects dependency changes - When you edit package files, the integration triggers
  2. Scans for vulnerabilities - Runs rootio_patcher in dry-run mode to check for patches
  3. Suggests fixes - If patches are available, the AI offers to apply them
  4. Applies patches - With your approval, runs the patcher to update your dependencies
The integration is non-intrusive - it only activates when you’re working with dependency files and doesn’t interfere with normal coding.

Next Steps

Choose your AI assistant to get started: