AgentDish directory

security

Accepted listings with this tag.

Listing Category Score Trend Checked
#538 ↓ -6
mcpguard

Open-source security scanner and firewall for MCP servers. It scans configs for common MCP risks, enforces runtime policies on tool calls, and produces audit logs, with CLI commands, policy examples, and a programmatic API.

Developer Tools / Security 84 ↓ -6 47 days ago Details
#550 ↓ -6
terminal-guardian-mcp

A secure Model Context Protocol server that gives AI assistants controlled terminal access with risk analysis, sandboxing, logging, filesystem protection, and optional Docker and Git features.

Developer Tools / MCP Servers 84 ↓ -6 55 days ago Details
#569 ↓ -6
AI Action Path Lab

An interactive lab for tracing how AI-assisted engineering workflows can reach repos, CI/CD, credentials, tools, approvals, and proof trails.

Productivity / Workflow Automation 84 ↓ -6 64 days ago Details
#593 ↑ +96
Faramesh

Runtime governance and containment for AI agents. Faramesh sits between an agent and its tools to enforce policy checks, approval steps, credential isolation, and tamper-evident audit logs before risky actions execute.

Developer Tools / AI Governance / Agent Security 84 ↑ +96 72 days ago Details

A security product for Claude Code that reviews application architecture inside the IDE via MCP, with contextual assessments, prioritized mitigations, and continuous re-checks as the codebase changes.

AI Security / AI Application Security 84 ↑ +194 73 days ago Details
#617 ↓ -3
mcp-audit

A harness that runs MCP servers in a disposable Linux sandbox and logs their real startup behavior, including file access and outbound network connections.

Developer Tools / AI Tooling 83 ↓ -3 8 days ago Details
#630 ↓ -3
Valmis

An open-source AI agent platform for production workflows, with isolated containers, credential proxying, and support for 100+ business and productivity integrations.

AI Agents / Workflow Automation 83 ↓ -3 15 days ago Details
#658 ↓ -3
VaultS3

VaultS3 is a self-hosted, S3-compatible object storage server with a built-in dashboard, low RAM usage, and a single-binary deployment. The page highlights features like versioning, WORM, S3 Select, FUSE mount, IAM/OIDC login, search, and event notifications.

Developer Tools / Storage 83 ↓ -3 39 days ago Details
#683 ↓ -3
Deckard

A Mac-resident MCP server that lets AI agents access Apple services like Mail, Calendar, iCloud Drive, Voice Memos, Reminders, and Contacts over a Tailscale network with per-token ACLs and audit logging.

Developer Tool / MCP Server 83 ↓ -3 64 days ago Details
#684 ↓ -3
HookGuard

HookGuard is a CLI security scanner for AI coding agent configuration files. It looks for malicious hooks, invisible Unicode, credential exfiltration patterns, and prompt-injection text in files like CLAUDE.md, AGENTS.md, Cursor rules, and GitHub Copilot instructions.

Developer Tools / Security 83 ↓ -3 64 days ago Details
#707 ↓ -2
Code Airlock

Code Airlock is a wrapper for running coding agents like Claude Code and Codex inside disposable microVMs, with changes committed to git for host-side review.

Developer Tools / AI Coding Agents 82 ↓ -2 6 days ago Details
#745 ↓ -2
git-lrc

git-lrc is a Git-based AI code review tool that runs on commit and surfaces risk categories, inline findings, and a summary deck for each review.

Developer Tools / Code Review 82 ↓ -2 31 days ago Details
#747 ↓ -2
guardian-runtime

Local-first governance layer for AI systems that monitors prompts and responses to block secrets, PII, and runaway LLM spending before requests leave the machine.

Developer Tools / Code Assistant 82 ↓ -2 35 days ago Details
#749 ↓ -2
Blue41

Blue41 is an enterprise risk control platform for AI agents. The site says it monitors agent behavior in production, detects prompt-injection-style incidents and unauthorized activity, and helps teams control sensitive workflows and compliance risk.

Security / AI Security 82 ↓ -2 36 days ago Details

A Blue41 case study on how a banking AI assistant could be abused through indirect prompt injection, and what mitigation layers help reduce the risk.

Security / AI Security 82 ↓ -2 37 days ago Details

Chrome extension that brings AI coding help directly into the browser for debugging, code explanations, security reviews, and solution generation.

Developer Tools / Code Assistant 82 ↓ -2 39 days ago Details
#763 ↓ -2
ftagent-lite

Open-source Python DDoS traffic monitor that prints live traffic stats to stdout and can output JSON for pipelines and tooling.

Security / Network Security 82 ↓ -2 51 days ago Details

A survey of eight tools that sit between AI agents and the services they call, covering credential injection, interception, policy enforcement, and mocking/testing. The page explains what each tool is for, where it fits, and what to watch out for.

Developer Tools / Code Assistant 82 ↓ -2 57 days ago Details

A weekly security audit of Atlassian’s remote MCP server, focused on OAuth 2.1, RFC 9728 discovery, PKCE, DCR, and token handling. The page documents why the server’s discovery chain fails and includes HTTP evidence links.

Developer Tools / API / MCP Server Audit 82 ↓ -2 58 days ago Details
#786 ↓ -2
Agent Sandbox

A Docker-based sandbox for running AI coding agents with dropped capabilities, no-new-privileges, and no Docker socket access. It wraps the pi terminal coding agent and supports local file edits, persistent auth, and skills mounts.

Developer Tools / AI Coding 82 ↓ -2 70 days ago Details
#845 ↓ -1
HEADING OS

A Claude Code-based operating system for running executive workflows across research, communications, CRM, content, and operations, with a split between a public engine repo and a private data repo.

AI Developer Tool / Agent workflow / private data orchestration 80 ↓ -1 16 days ago Details

A GitHub Copilot port of Anthropic’s vulnerability discovery harness, with Copilot skills for threat modeling, scanning, triage, patching, and an autonomous sandboxed pipeline for C/C++ memory-safety bug discovery and remediation.

Developer Tools / AI Security / Vulnerability Discovery 79 ↑ +2 39 days ago Details
#950 ↑ +6
Repolog

Repolog scans a live website and produces a ranked audit covering on-page SEO, Core Web Vitals, security checks, and AI readiness for major AI search and assistant platforms.

AI-powered product / Website audit / SEO and security 78 ↑ +6 49 days ago Details

A metadata-first trust control plane for authorized security workflows, evidence retention, release trust, and business-flow proof. The repository includes role-based docs, quick-start commands, safety boundaries, and release-trust materials.

Security / Security Operations / Trust Infrastructure 78 ↓ -100 72 days ago Details