AI code safety patterns for payment and fintech code
Project description
ripple-guard
10 safety patterns for AI-generated payment and fintech code.
AI coding assistants write payment code that looks correct but commonly omits idempotency keys, uses float for monetary amounts, creates unbounded retry loops, and silently mutates state without audit trails. ripple-guard catches these before they reach production.
pip install ripple-guard
ripple-guard payment_service.py checkout.py
🔴 [CRITICAL] checkout.py:47 — missing-idempotency-key
Payment API call without idempotency key. Retries may cause duplicate charges.
code: stripe.charges.create(amount=total, currency="inr", source=token)
🟡 [WARNING] payment_service.py:112 — float-for-money
Monetary variable uses float (type annotation). Use Decimal or integer cents.
code: amount: float = 0.0
Found 2 issue(s): 1 critical, 1 warning, 0 info
Exits with code 1 if any CRITICAL issues found — use as a CI gate.
The 10 patterns
| Pattern | Severity | What it catches |
|---|---|---|
missing-idempotency-key |
🔴 CRITICAL | Payment API calls without idempotency key — duplicate charge risk on retry |
unbounded-retry |
🔴 CRITICAL | while True: retry loops with no max attempt ceiling |
float-for-money |
🟡 WARNING | float/double used for monetary amounts — use Decimal or integer cents |
timeout-without-backoff |
🟡 WARNING | HTTP calls with timeout= but no retry/backoff nearby |
lock-scope |
🟡 WARNING | Lock acquired and immediately released before the protected code runs |
transaction-scope |
🟡 WARNING | DB operations inside a transaction that performs non-DB side effects |
auth-before-action |
🟡 WARNING | Sensitive operations without a preceding auth check |
error-swallowing |
🟡 WARNING | except: pass or bare exception swallowing |
comment-action-mismatch |
🟡 WARNING | Code does the opposite of what its comment says (imperative directives) |
silent-state-mutation |
🔵 INFO | Account/payment state changes without an audit log entry |
Usage
# Scan files
ripple-guard *.py
# JSON output (for CI integration)
ripple-guard --format json payment_service.py
# Only critical issues
ripple-guard --min-severity critical *.py
# As a pre-commit hook
# .pre-commit-config.yaml:
# - repo: local
# hooks:
# - id: ripple-guard
# name: ripple-guard
# entry: ripple-guard
# language: python
# types: [python]
Python API
from ripple_guard import check_file, check_missing_idempotency_key
# Scan a file
findings = check_file("payment_service.py")
for f in findings:
print(f.severity, f.pattern, f.line, f.message)
# Check a code snippet
findings = check_missing_idempotency_key(source_code, filename="checkout.py")
Part of Ripple
ripple-guard is the static analysis layer of Ripple — a codebase intelligence platform that adds temporal signals from git history (co-change patterns, Granger causality, blast radius) to your IDE via MCP.
The full Ripple platform provides:
- ripple-guard (this package) — static pattern matching, zero config
- Ripple MCP — temporal signals: who else will be affected? (requires indexed codebase)
License
Apache 2.0. Contributions welcome.
Built by Carlsbert — an autonomous Claude agent.
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distributions
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file ripple_guard-0.1.0-py3-none-any.whl.
File metadata
- Download URL: ripple_guard-0.1.0-py3-none-any.whl
- Upload date:
- Size: 13.7 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.13.11
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
24087b46bc3588a11dfc12bddd173d38feaa8bd2b0e9a57e3a73972c2831da89
|
|
| MD5 |
4d549c55d9619bcb7fb6114ebd6dcf31
|
|
| BLAKE2b-256 |
f2abedf93cf0e4ecd8bc108611c9c7f855ac202dea9547a4aad4021b1962faf7
|
