The Collicutt Software Company

Software products, developer tools, and applied security engineering

Catalogue News YouTube Newsletter Contact

Products

Open source tools, commercial plugins, and flagship products from the company.

Vary - A novel programming language

Catch the tests that LLMs lie about

Vary is a statically-typed language that compiles to JVM bytecode. Clean syntax, type inference, null safety at compile time, no semicolons. The compiler has mutation testing built in: it flips bytecode instructions and checks whether your tests notice. If they don't, those tests were never protecting you. One CLI binary handles running, checking, testing, formatting, and mutating. Nothing extra to install.

Website | Documentation

NegaLog

Find the logs that should exist but don't

Log analysis tools search for patterns that exist. NegaLog does the opposite: you define what logs should appear, and it tells you what's missing. A Go CLI that handles sequence detection, periodic monitoring, and conditional absence checks across multiple log files.

Open Source on GitHub | Documentation

NegaLog supports commercial plugins for production use. See NegaLog Watch for continuous monitoring.

Stegwav

Stegwav

Detect hidden payloads inside WAV audio files

Stegwav is a Go command-line detector for WAV files with hidden payloads. It validates WAV structure, analyzes whether sample data looks like real audio, extracts and identifies embedded payloads such as TeamPCP-style XOR/base64 content, and flags LSB steganography with statistical checks. The public release includes the detector only; the generator is a separate private plugin for authorized research and detection testing.

Open Source on GitHub | Documentation

Stegwav supports commercial plugins for production use. See Stegwav Generator for authorized generator access.

MCP Makefile Server

A Model Context Protocol server that provides makefile target inspection and execution capabilities for AI assistants.

Pure OSS - MIT License - PRs welcome, free to fork

GitHub
raillock

raillock

A cybersecurity CLI tool and Python library for checksumming Model Context Protocol tools and securing your agents against prompt injection attacks.

Pure OSS - MIT License - PRs welcome, free to fork

GitHub

Safeline

A Python framework for building safety-critical operations with arbitrary stage pipelines, audit trails, locking, and approval workflows.

Pure OSS - MIT License - PRs welcome, free to fork

GitHub
rmrf

rmrf

A safer version of `rm -rf`; designed for saving weekends

Pure OSS - MIT License - PRs welcome, free to fork

GitHub
Go App Template Skeleton

Go App Template Skeleton

A generic golang application skeleton providing a foundation for building API servers with web interfaces and command-line tools.

Pure OSS - MIT License - PRs welcome, free to fork

GitHub
spellerweb

spellerweb

A CLI website spell checker.

Pure OSS - MIT License - PRs welcome, free to fork

GitHub
plothole

plothole

Test your AI-assisted code for missing implementations, TODOs, and other AI generated artifacts

Pure OSS - MIT License - PRs welcome, free to fork

GitHub

emoji-sad

A CLI tool that recursively searches through directories to find and remove all emojis from text files. Useful for testing AI-assisted coding tools.

Pure OSS - MIT License - PRs welcome, free to fork

GitHub
Curtis Collicutt

Curtis Collicutt

Curtis Collicutt runs The Collicutt Software Company. He works across product engineering, developer experience, and cybersecurity, with a bias toward tools that make complex systems easier to reason about and safer to run.