AI-Powered Fixes
Rivet uses AI to generate fix suggestions for quantum-vulnerable code findings. Suggestions are provided as diffs for you to review and apply manually.
How It Works
- Detection โ Code analyzer finds a quantum-vulnerable pattern
- Generation โ AI generates a replacement using a NIST PQC algorithm
- Review โ You review the suggested diff
- Apply โ Apply the changes manually to your codebase
Supported Fix Types
- RSA key generation โ ML-KEM / ML-DSA
- ECC operations โ ML-DSA
- Weak hash functions โ SHA-3 / BLAKE3
- Insecure random โ OS-level CSPRNG
- Deprecated TLS configs โ TLS 1.3 with PQC cipher suites
Notes
- Suggestions are provided as guidance only โ always review before applying to your codebase
- Staleness detection โ if the file changed since the scan, the suggestion is invalidated and must be regenerated
- Use Discard to remove a suggestion and start fresh
- Use Regenerate to produce a new suggestion for the same finding
LLM Configuration
| Provider | Notes |
|---|---|
| Google Gemini | Default โ requires a Google AI API key |
| Anthropic Claude | Requires an Anthropic API key |
| OpenAI GPT | Requires an OpenAI API key |
| Custom / On-Premise | Ollama, LM Studio, Azure OpenAI, vLLM โ for air-gapped or self-hosted deployments (Enterprise) |
Configure in Settings โ AI Configuration.