.svg){kind=spacer}
Details
- Perplexity says it is open-sourcing Bumblebee, a read-only scanner for macOS and Linux developer machines.
- The tool checks endpoints for risky packages, browser extensions, and AI tool configurations that could matter during supply-chain incidents.
- Bumblebee was originally built as an internal security tool for Perplexity’s own developer systems.
- Perplexity says Bumblebee connects with Computer so deeper scans can be triggered when new supply-chain risks emerge.
- The company describes Bumblebee as part of a broader workflow that combines threat tracking, human review, and endpoint checks.
- Perplexity says the project is now available as an open-source Go tool for security teams to run against their own catalogs of bad versions and configurations.
Impact
Open-sourcing Bumblebee gives Perplexity a practical way to turn an internal security control into a developer-facing product and a public example of its security posture. In a market where software supply-chain risk has become a recurring concern, a lightweight scanner for packages, extensions, and AI configs could appeal to security teams looking for faster endpoint visibility without replacing existing workflows. The move also reinforces Perplexity’s broader push around Computer and adjacent infrastructure products, while signaling that security and trust are becoming part of the company’s competitive story.
