tool-poisoning

Here are 27 public repositories matching this topic...

mcpware / cross-code-organizer

Cross-Code Organizer (formerly Claude Code Organizer): cross-harness config dashboard for Claude Code, Codex CLI, MCP servers, skills, memories, agents, sessions, security scanning, context budget, and backups.

Updated Apr 28, 2026
JavaScript

panguard-ai / panguard-ai

Star

Open-source security platform for AI agents -- audits skills before install, monitors 24/7, shares threat intelligence across all users. | AI Agent 開源安全平台 -- 安裝前審計 skill、24/7 即時監控、社群共享威脅情報。

open-source typescript mcp cybersecurity yara threat-intelligence ai-security threat-detection sigma-rules ai-agent prompt-injection llm-security tool-poisoning

Updated Apr 22, 2026
TypeScript

sahiloj / MCPScan

Star

Offensive MCP server auditor — detects tool poisoning, credential leaks, RCE vectors, SSRF, session hijacking, and supply chain vulnerabilities across stdio, HTTP, and SSE transports.

open-source security mcp supply-chain offensive-security vulnerability-scanner ai-security llm-security model-context-protocol mcp-security tool-poisoning mcpscan

Updated Mar 12, 2026
TypeScript

elliotllliu / agent-shield

Star

Multi-engine security scanner for AI agents, MCP servers & plugins — 13 engines, one report.

mcp static-analysis security-scanner dify ai-security supply-chain-security ai-agent prompt-injection model-context-protocol mcp-server agent-security mcp-security openclaw tool-poisoning

Updated Mar 18, 2026
TypeScript

joergmichno / clawguard

Star

Open-Source Prompt Injection Scanner for AI agents. 225 detection patterns, 15 languages, F1=98.3%. REST API, EU AI Act compliance mapping, <10ms latency.

Updated Apr 27, 2026
Python

sattyamjjain / agent-audit-kit

Star

Security scanner for MCP-connected AI agent pipelines — 77 rules, 13 scanners, OWASP Agentic 10/10, GitHub Action, SARIF, compliance mapping

security mcp scanner static-analysis owasp security-scanner ai-safety sarif ai-security github-action supply-chain-security ai-agent claude-code mcp-security ai-agent-security tool-poisoning

Updated Apr 29, 2026
Python

deconvolute-labs / deconvolute

Star

Policy-as-code enforcement and observability for MCP tool calls. Wraps AI agent sessions with cryptographic integrity checks, argument-level CEL policies, and a full audit trail.

security ai mcp firewall ai-security prompt-injection llm-security agentic-ai model-context-protocol mcp-client mcp-security tool-poisoning

Updated May 1, 2026
Python

deconvolute-labs / mcp-deconvolute-demo

Star

Live PoC: MCP attacks that compromise AI agents mid-session and how to block them in a few lines of code.

python dns mcp cybersecurity ai-agents dns-rebinding ai-security security-demo llm prompt-injection llm-security rug-pull agentic-ai model-context-protocol mcp-security ai-agents-mcp tool-poisoning

Updated Apr 8, 2026
Python

go-authgate / agent-scanner

Star

Security scanner for AI agents, MCP servers, and agent skills

cli golang security mcp vscode cursor security-scanner ai-security ai-agent prompt-injection claude-desktop model-context-protocol mcp-server tool-poisoning

Updated Apr 24, 2026
Go

sunilgentyala / contextguard

Star

Zero-trust governance middleware for Model Context Protocol deployments

typescript mcp cybersecurity typescript2 zero-trust ai-security supply-chain-security zero-trust-security prompt-injection llm-security agentic-ai mcp-security mcp-model-context-protocol tool-poisoning

Updated Apr 29, 2026
TypeScript

TimesAndPlaces / mcp-preflight

Star

Local static scanner for MCP setup, config, prompts, and workflow trust.

cli mcp vscode-extension ai-security local-first supply-chain-security prompt-injection model-context-protocol tool-poisoning

Updated Mar 27, 2026
TypeScript

jakeefr / mcp-sentinel

Star

Runtime security scanner for MCP tool poisoning. Native Claude Code plugin.

security mcp owasp cybersecurity claude prompt-injection claude-code tool-poisoning antrhopic

Updated Apr 22, 2026
Python

decoy-run / decoy-scan

Star

Security scanner for MCP server configurations. Like npm audit, but for your AI agent tool servers. Finds risky tools, input validation gaps, transport vulnerabilities, and over-permissioned capability chains. Open source, zero dependencies.

cli security mcp scanner supply-chain owasp sarif ai-agent prompt-injection tool-poisoning

Updated Apr 28, 2026
JavaScript

AgentDefenders / mcp-scan

Star

Security scanner for MCP server configurations. Detects tool poisoning, prompt injection, shadowing attacks, and known threats.

security mcp scanner supply-chain ai-agent prompt-injection model-context-protocol tool-poisoning

Updated Apr 17, 2026
TypeScript

sunglasses-dev / sunglasses

Star

Sunglasses for AI agents. Protection layer + neighborhood watch.

Updated May 1, 2026
Python

BuildWithAbid / mcp-audit

Star

Python security scanner for Model Context Protocol (MCP) servers — find prompt injection, over-broad permissions, weak input validation, and credential leaks before your AI agent does.