agent-security-scanner

Name: agent-security-scanner
Rating: 2.99 (1 reviews)
Author: prooflayer

#1728 · by prooflayer

agent tool-use multi-step

2.99/ 5.00

cautionBeta

Mar 3, 2026 at 7:21 AM6 signals analysedNo manual reviews · fully automated

Trust Signal Breakdown

low23 sub-signals across 6 dimensions

CVEs, dependency health, and supply chain integrity

0 of 3 sub-signals with data

Known CVEsno data—

Weight redistributed to sub-signals with data

Dependency Healthno data—

Weight redistributed to sub-signals with data

Supply Chainno data—

Weight redistributed to sub-signals with data

Uptime, latency, error rates, and incident history

4 of 4 sub-signals with data

Uptime35%5.0

100.00% over 4 checks

via Health checks

Response Latency25%5.0

p99: 75ms, p50: 54ms

via Health checks

Error Rate20%1.0

100.00% error rate (4/4)

via Health checks

Incident History20%4.0

1 incidents in last 90 days

via Incidents table

Commit recency, release cadence, issue response, CI/CD

0 of 4 sub-signals with data

Commit Recencyno data—

Weight redistributed to sub-signals with data

Release Cadenceno data—

Weight redistributed to sub-signals with data

Issue Responseno data—

Weight redistributed to sub-signals with data

CI/CD Presenceno data—

Weight redistributed to sub-signals with data

Downloads, stars, dependents, and growth trajectory

0 of 4 sub-signals with data

Download Volumeno data—

Weight redistributed to sub-signals with data

GitHub Starsno data—

Weight redistributed to sub-signals with data

Dependent Packagesno data—

Weight redistributed to sub-signals with data

Growth Trendno data—

Weight redistributed to sub-signals with data

License, documentation, security policy, changelog

0 of 4 sub-signals with data

Open Sourceno data—

Weight redistributed to sub-signals with data

Documentationno data—

Weight redistributed to sub-signals with data

Security Policyno data—

Weight redistributed to sub-signals with data

Changelogno data—

Weight redistributed to sub-signals with data

Track record, org maturity, community standing

0 of 4 sub-signals with data

Track Recordno data—

Weight redistributed to sub-signals with data

Org Maturityno data—

Weight redistributed to sub-signals with data

Community Standingno data—

Weight redistributed to sub-signals with data

Cross-Platformno data—

Weight redistributed to sub-signals with data

Limited data available — 5 of 6 signals pending evaluation

About this score

Scored across 23 sub-signals in 6 dimensionsScoring engine v1 (beta) — actively being expandedPhase 1: Core sub-signal architecture (live)Phase 2: Permission scope & expanded collection (in progress)

Trust AssessmentAI Assessment

Security scanner MCP server that protects AI coding agents from generating vulnerable code. Features: • 275+ security rules for Python, JavaScript, TypeScript, Java, Go, Ruby, PHP, C/C++, Rust, C#, Terraform, Kubernetes • AST-based detection with tree-sitter (falls back to regex when unavailable) • Taint analysis for tracking user input to dangerous sinks • Package hallucination detection across 4.3M+ packages (npm, PyPI, RubyGems, crates.io, pub.dev, CPAN, Raku) • Prompt injection detection for AI agent security • Automatic fix suggestions for common vulnerabilities • CWE/OWASP metadata for compliance Tools: • scan_security - Scan files for vulnerabilities • fix_security - Auto-fix security issues • check_package - Verify if a package exists or is hallucinated • scan_agent_prompt - Detect prompt injection attacks • list_security_rules - View all available rules • list_package_stats - Package database statistics Zero config - works instantly wit

Package Availability (30d)

100.00%

p50: 54ms · p99: 75ms

Avg Latency

51ms

averaged across 30d health checks

Weekly Downloads

—

no package registry data

Incidents & Alertslast 90 days

Feb 24agent-security-scanner added to Trust Index2.52

Showing 1 of 1 events