Expand description
AgentShield — Security scanner for AI agent extensions.
Offline-first, multi-framework, SARIF output. Scans MCP servers, OpenClaw skills, and other agent extension formats for security issues.
§Quick Start
use std::path::Path;
use agentshield::{scan, ScanOptions};
let options = ScanOptions::default();
let report = scan(Path::new("./my-mcp-server"), &options).unwrap();
println!("Pass: {}, Findings: {}", report.verdict.pass, report.findings.len());Modules§
- adapter
- analysis
- baseline
- Baseline schema for tracking known findings across scan runs.
- certify
- DSSE envelope and in-toto attestation for scan results.
- config
- doctor
- egress
- Egress policy module for runtime network enforcement.
- error
- ir
- Unified Intermediate Representation for agent extension analysis.
- output
- parser
- rules
Structs§
- Scan
Options - Options for a scan invocation.
- Scan
Report - Complete scan report.
Functions§
- render_
report - Render a scan report in the specified format.
- scan
- Run a complete scan: detect framework, parse, analyze, evaluate policy.