Spiral, the open-source Bitcoin development arm of Jack Dorsey's Block, has launched Loupe, a free AI-powered vulnerability scanning service built specifically for open-source Bitcoin projects. The tool arrives at a moment when the asymmetry between attackers and defenders has never been starker.
The Security Gap in Open Source
Open-source Bitcoin development operates on a shoestring. Most critical infrastructure is maintained by small teams or even individual developers who lack access to the enterprise-grade security auditing that well-funded attackers can afford. Loupe is designed to address that imbalance directly, offering continuous vulnerability scanning at no cost to projects that form the backbone of Bitcoin's ecosystem.
The timing is deliberate. Over the past year, AI has dramatically shifted the economics of vulnerability discovery. According to Ledger CTO Charles Guillemet, AI tools have made finding and exploiting vulnerabilities significantly easier and cheaper. Hacks and exploits caused $1.4 billion in crypto losses over the past year, and industry insiders expect that figure to climb as AI capabilities improve.
The threat is compounding. AI-generated code, now widespread in development workflows, tends to introduce vulnerabilities faster than humans can catch them. As Guillemet put it: "There is no 'make it secure' button. We are going to produce a lot of code that will be insecure by design."
Spiral's Broader Mission
Loupe extends Spiral's longstanding focus on Bitcoin infrastructure. The organization, formerly known as Square Crypto before Block's 2021 rebrand, operates with unusual independence from its parent company. Steve Lee, who leads Spiral, has emphasized that the team sets its own priorities without direction from Dorsey or Block's executive leadership.
Spiral's portfolio already includes the Lightning Development Kit (LDK) and the Bitcoin Development Kit (BDK), open-source libraries that abstract away low-level complexity for developers building wallets and Lightning applications. The organization also funds grants for independent Bitcoin contributors and runs educational initiatives aimed at improving design and usability across the ecosystem.
The logic behind Loupe follows naturally from that work. Making it easier to build Bitcoin applications is only useful if those applications remain secure once deployed. As frontier AI models demonstrate increasing capability in vulnerability research, the tools that defenders use need to evolve in lockstep.
A Defensive Response to Offensive AI
The launch arrives against a backdrop of escalating AI-driven attacks in the crypto space. In 2026 alone, over $600 million has been stolen in crypto hacks, with AI systems enabling large-scale attacks through social engineering, deepfakes, and automated vulnerability scanning. North Korean-linked groups have been implicated in several of the largest incidents.
Google's Threat Intelligence Group recently identified what it believes is the first confirmed real-world case of a threat actor using an AI-developed zero-day exploit in an active attack campaign. The vulnerability, a 2FA bypass in a widely used open-source web administration tool, was reportedly discovered and weaponized using an AI model. That discovery underscores the accelerating pace of AI-assisted offensive operations.
Loupe represents one response to that trend. Rather than leaving open-source maintainers to fend for themselves, Spiral is betting that democratizing access to AI-powered security tools can help level the playing field. The scanner is designed for continuous integration, meaning projects can catch vulnerabilities before they reach production rather than scrambling to patch after disclosure.
What Comes Next
Spiral has not disclosed the specific AI models or techniques underlying Loupe, and details about the scanner's capabilities remain sparse at publication. The tool is available immediately to open-source Bitcoin projects at no cost.
For an ecosystem that depends on code maintained by volunteers and small grants, free access to enterprise-class security scanning is a meaningful contribution. Whether it proves sufficient to close the gap against increasingly capable adversaries will depend on adoption rates and how quickly Spiral can iterate on the underlying technology. The race between AI-powered offense and defense in crypto security is accelerating, and Loupe is Spiral's opening bid on the defensive side of that equation.
