Cette page est affichée en anglais. Une traduction française est en cours.
SkillsMay 12, 2026·2 min de lecture

AI-Infra-Guard — Scan MCP Servers and AI Stacks

AI-Infra-Guard runs a web UI + scanners that assess MCP servers, agent skills, and AI infra components for security risks, CVEs, and jailbreak exposure.

Prêt pour agents

Installation avec revue préalable

Cet actif nécessite une revue. Le prompt copié demande un dry-run, affiche les écritures, puis continue seulement après confirmation.

Needs Confirmation · 64/100Policy : confirmer
Surface agent
Tout agent MCP/CLI
Type
Skill
Installation
Single
Confiance
Confiance : Established
Point d'entrée
Asset
Commande avec revue préalable
npx -y tokrepo@latest install 9f00bc44-9576-4392-a4d5-1b6ba3fdbf31 --target codex

Dry-run d'abord, confirmez les écritures, puis lancez cette commande.

Introduction

AI-Infra-Guard runs a web UI + scanners that assess MCP servers, agent skills, and AI infra components for security risks, CVEs, and jailbreak exposure.

  • Best for: security reviews for AI agent stacks: MCP servers, skills, and local AI services
  • Works with: Docker 20.10+, Docker Compose, local or staged environments (no public exposure recommended)
  • Setup time: 30–90 minutes

Practical Notes

  • Data point: README lists baseline resources: 4GB+ RAM and 10GB+ disk.
  • Data point: the default UI address is http://localhost:8088.

Pattern: scan before you connect

For MCP servers and agent skills, scan before you wire them into your agent runtime:

  • remote URL scan for third-party repos,
  • source scan for internal forks,
  • and keep an allowlist of approved servers.

Deployment note

The README notes the project lacks an authentication mechanism and should not be deployed on public networks. Use a local/staging environment and restrict access.

FAQ

Q: Is it open-source? A: Yes. The repo is Apache-2.0 licensed.

Q: Can it scan MCP servers? A: Yes. The README lists MCP server & agent skills scanning capabilities.

Q: Is it safe to expose publicly? A: The README warns it lacks auth; keep it off public networks.

🙏

Source et remerciements

Source: https://github.com/Tencent/AI-Infra-Guard > License: Apache-2.0 > GitHub stars: 3,657 · forks: 363

Fil de discussion

Connectez-vous pour rejoindre la discussion.
Aucun commentaire pour l'instant. Soyez le premier à partager votre avis.

Actifs similaires