msaad00/agent-bom

Security scanner for AI infrastructure — CVEs, blast radius, credential exposure, runtime enforcement across MCP servers, containers, cloud, and GPU.

60
/ 100
Established

Performs AST analysis on 14 AI frameworks to extract system prompts and tool signatures, then maps CVE→package→MCP server→agent→credentials→tools blast radius. Built around MCP client discovery (30 types), runtime protection via proxy with 112 detection patterns, and AI BOM generation with CycloneDX extensions—integrating package ecosystems (15), container/IaC scanning, cloud AI infrastructure, and the Shield SDK for agent-level enforcement.

6 stars and 11,776 monthly downloads. Used by 1 other package. Available on PyPI.

Maintenance 13 / 25
Adoption 14 / 25
Maturity 18 / 25
Community 15 / 25

How are scores calculated?

Stars

6

Forks

4

Language

Python

License

Apache-2.0

Category

security-testing-mcp

Last pushed

Mar 11, 2026

Monthly downloads

11,776

Commits (30d)

0

Dependencies

13

Reverse dependents

1

GitHub PyPI
Security Testing MCP · 268 servers

Get this data via API

curl "https://pt-edge.onrender.com/api/v1/quality/mcp/msaad00/agent-bom"

Open to everyone — 100 requests/day, no key needed. Get a free key for 1,000/day.

Compare

agent-bom and mcp-audit agent-bom and agent-security-scanner-mcp

Related servers

panther-labs/mcp-panther

Write detections, investigate alerts, and query logs from your favorite AI agents

67

0x4m4/hexstrike-ai

HexStrike AI MCP Agents is an advanced MCP server that lets AI agents (Claude, GPT, Copilot,...

66

Wh0am123/MCP-Kali-Server

MCP configuration to connect AI agent to a Linux machine.

66

duriantaco/skylos

High-precision Python SAST & Dead Code Remover. Finds unused functions, secrets, and security...

66

DMontgomery40/pentest-mcp

NOT for educational purposes: An MCP server for professional penetration testers including...

65

Explore MCP Servers

All categories Trending MCP Server directory Insights