agentshield
by affaan-m
AI agent security scanner. Detect vulnerabilities in agent configurations, MCP servers, and tool permissions. Available as CLI, GitHub Action, ECC plugin, and GitHub App integration. ๐ก๏ธ
110stars
21forks
TypeScript
Added 3/14/2026
AI Agentsai-agentanthropicclaude-codehackathonmcpopussecurity
Installation
# Add to your Claude Code skills
git clone https://github.com/affaan-m/agentshield<div align="center">
AgentShield
Security auditor for AI agent configurations
Scans Claude Code setups for hardcoded secrets, permission misconfigs,<br/> hook injection, MCP server risks, and agent prompt injection vectors.
Quick Start ยท What It Catches ยท Opus Pipeline ยท GitHub Action ยท MiniClaw ยท Distribution
</div>Why
The AI agent ecosystem is growing faster than its security tooling. In January 2026 alone:
- 12% of a major agent skill marketplace was malicious (341 of 2,857 community skills)
- A CVSS 8.8 CVE exposed 17,500+ internet-facing instances to one-click RCE
- The Moltbook breach compromised 1.5M API tokens across 770,000 agents
Developers install community skills, connect MCP servers, and configure hooks without any automated way to audit the security of their setup. AgentShield scans your .claude/ directory and flags vulnerabilities before they become exploits.
Built at the Claude Code Hackathon (Cerebral Valley x Anthropic, Feb 2026). Part of the Everything Claude Code ecosystem (42K+ stars).
Quick Start
# Scan your Claude Code config (no install required)
npx ecc-agentshield scan
# Or install globally
npm install -g ecc-agentshield
agentshield scan
That's it. AgentShield auto-discovers your ~/.claude/ directory, scans all config files, and prints a graded security report.
AgentShield Security Report
Grade: F (0/100)
Score Breakdown
Secrets โโโโโโโโโโโโโโโโโโโโ 0
Permissions โโโโโโโโโโโโโโโโโโโโ 0
Hooks โโโโโโโโโโโโโโโโโโโโ 0
MCP Servers โโโโโโโโโโโโโโโโโโโโ 0
Agents โโโโโโโโโโโโโโโโโโโโ 0
โ CRITICAL Hardcoded Anthropic API key
CLAUDE.md:13
Evidence: sk-ant-a...cdef
Fix: Replace with environment variable reference [auto-fixable]
โ CRITICAL Overly permissive allow rule: Bash(*)
settings.json
Evidence: Bash(*)
Fix: Restrict to specific commands: Bash(git *), Bash(npm *), Bash(node *)
Summary
Files scanned: 6
Findings: 73 total โ 19 critical, 29 high, 15 medium, 4 low, 6 info
Auto-fixable: 8 (use --fix)
More commands
# Scan a specific directory
agentshield scan --path /path/to/.claude
# Auto-fix safe issues (replaces hardcoded secrets with env var references)
agentshield scan --fix
# JSON output for CI p...
Comments (0)
to leave a comment.
No comments yet. Be the first to share your thoughts!
Related Skills
Fair-code workflow automation platform with native AI capabilities. Combine visual building with custom code, self-host or cloud, 400+ integrations.
179,165
55,789
TypeScript
MCP Serversaiapis
An open-source AI agent that brings the power of Gemini directly into your terminal.
97,754
12,257
TypeScript
AI Agentsaiai-agents
The agent harness performance optimization system. Skills, instincts, memory, security, and research-first development for Claude Code, Codex, Opencode, Cursor and beyond.
76,097
9,506
JavaScript
AI Agentsai-agentsanthropic
Context7 Platform -- Up-to-date code documentation for LLMs and AI code editors
49,063
2,314
TypeScript
MCP Serversllmmcp
โญAI-driven public opinion & trend monitor with multi-platform aggregation, RSS, and smart alerts.๐ฏ ๅๅซไฟกๆฏ่ฟ่ฝฝ๏ผไฝ ็ AI ่ๆ
็ๆงๅฉๆไธ็ญ็น็ญ้ๅทฅๅ
ท๏ผ่ๅๅคๅนณๅฐ็ญ็น + RSS ่ฎข้
๏ผๆฏๆๅ
ณ้ฎ่ฏ็ฒพๅ็ญ้ใAI ๆบ่ฝ็ญ้ๆฐ้ป + AI ็ฟป่ฏ + AI ๅๆ็ฎๆฅ็ดๆจๆๆบ๏ผไนๆฏๆๆฅๅ
ฅ MCP ๆถๆ๏ผ่ต่ฝ AI ่ช็ถ่ฏญ่จๅฏน่ฏๅๆใๆ
ๆๆดๅฏไธ่ถๅฟ้ขๆต็ญใๆฏๆ Docker ๏ผๆฐๆฎๆฌๅฐ/ไบ็ซฏ่ชๆใ้ๆๅพฎไฟก/้ฃไนฆ/้้/Telegram/้ฎไปถ/ntfy/bark/slack ็ญๆธ ้ๆบ่ฝๆจ้ใ
48,947
22,642
Python
MCP Serversaibark
A curated list of awesome Claude Skills, resources, and tools for customizing Claude AI workflows
44,141
4,446
Python
AI Agentsagent-skillsai-agents