garagon/aguara
Security scanner for AI agent skills & MCP servers. 173 detection rules. 13 categories. 5 registries monitored daily. OpenClaw detection included. No API keys, no cloud, no LLM. One binary. Detection engine behind Oktsec.
Employs a 4-layer analysis engine combining regex pattern matching with Aho-Corasick automaton, NLP-driven AST parsing of markdown/JSON/YAML structures, cross-file taint tracking for dangerous capability chains, and SHA256-based rug-pull detection—each layer targets evasion techniques the others might miss. Supports 17 MCP client configurations (Claude Desktop, Cursor, VS Code, Windsurf, etc.) and includes dynamic confidence scoring, 6 decoders for obfuscated payloads, and context-aware rule exemptions per tool type. Available as standalone binary, Docker image, or Go library API with extensible YAML rule support and multiple output formats (JSON, SARIF, Markdown) for CI integration.
Stars
49
Forks
7
Language
Go
License
Apache-2.0
Category
Last pushed
Mar 11, 2026
Commits (30d)
0
Get this data via API
curl "https://pt-edge.onrender.com/api/v1/quality/mcp/garagon/aguara"
Open to everyone — 100 requests/day, no key needed. Get a free key for 1,000/day.
Higher-rated alternatives
panther-labs/mcp-panther
Write detections, investigate alerts, and query logs from your favorite AI agents
duriantaco/skylos
High-precision Python SAST & Dead Code Remover. Finds unused functions, secrets, and security...
Wh0am123/MCP-Kali-Server
MCP configuration to connect AI agent to a Linux machine.
0x4m4/hexstrike-ai
HexStrike AI MCP Agents is an advanced MCP server that lets AI agents (Claude, GPT, Copilot,...
DMontgomery40/pentest-mcp
NOT for educational purposes: An MCP server for professional penetration testers including...