agent-bom and agent-security-scanner-mcp
About agent-bom
msaad00/agent-bom
Security scanner for AI infrastructure — CVEs, blast radius, credential exposure, runtime enforcement across MCP servers, containers, cloud, and GPU.
Performs AST analysis on 14 AI frameworks to extract system prompts and tool signatures, then maps CVE→package→MCP server→agent→credentials→tools blast radius. Built around MCP client discovery (30 types), runtime protection via proxy with 112 detection patterns, and AI BOM generation with CycloneDX extensions—integrating package ecosystems (15), container/IaC scanning, cloud AI infrastructure, and the Shield SDK for agent-level enforcement.
About agent-security-scanner-mcp
sinewaveai/agent-security-scanner-mcp
Security scanner MCP server for AI coding agents. Prompt injection firewall, package hallucination detection (4.3M+ packages), 1000+ vulnerability rules with AST & taint analysis, auto-fix.
Combines MCP integration with CLI flexibility, supporting Claude, Cursor, Windsurf, and OpenClaw — with parallel architecture splitting lightweight regex-based scanning (81.5KB ProofLayer) from enterprise features like AST+taint analysis, cross-file data flow tracking, and LLM-powered semantic intent profiling. Generates CycloneDX SBOMs, cross-references against OSV.dev for CVEs, and includes specialized detection for autonomous AI threats (prompt jailbreaks, unicode poisoning, malware signatures).
Related comparisons
Scores updated daily from GitHub, PyPI, and npm data. How scores work