Is io.github.ExposureGuard/haldir safe to use?

io.github.ExposureGuard/haldir has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.

How do I install io.github.ExposureGuard/haldir?

io.github.ExposureGuard/haldir supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.

What AI clients work with io.github.ExposureGuard/haldir?

io.github.ExposureGuard/haldir is compatible with claude-desktop, cursor, claude-code. It uses stdio and sse and http transport.

Is io.github.ExposureGuard/haldir actively maintained?

io.github.ExposureGuard/haldir is recently maintained — last commit was 38 days ago. It has 2 GitHub stars.

io.github.ExposureGuard/haldir

haldir

Guardian layer for AI agents: identity, secrets, audit via MCP.

2 0 tools GitHub PyPI

No known CVEs

No license

Maintained

Last commit 38d ago

Works with most clients

Transport: stdio, sse, http

0 tools

Grade F

Edit this pageView history

Security AI / ML

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopstdio, sse, http · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "haldir": {
      "env": {
        "HALDIR_API_KEY": "hld_xxx"
      },
      "command": "haldir-mcp"
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/io-github-exposureguard-haldir)](https://mcppedia.org/s/io-github-exposureguard-haldir)

Read me

What io.github.ExposureGuard/haldir does

Identity, secrets, and audit for AI agents. MCP-native. Model-agnostic.

Test This Server

Run this in your terminal to verify the server starts. Then let us know if it worked — your result helps other developers.

uvx 'haldir' 2>&1 | head -1 && echo "✓ Server started successfully"

After testing, let us know if it worked:

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

51/100across 5 weighted dimensions

How we score →

0255075100

−49

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

No known CVEs.

Checked haldir against OSV.dev.

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is io.github.ExposureGuard/haldir safe to use?: io.github.ExposureGuard/haldir has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.
How do I install io.github.ExposureGuard/haldir?: io.github.ExposureGuard/haldir supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.
What AI clients work with io.github.ExposureGuard/haldir?: io.github.ExposureGuard/haldir is compatible with claude-desktop, cursor, claude-code. It uses stdio and sse and http transport.
Is io.github.ExposureGuard/haldir actively maintained?: io.github.ExposureGuard/haldir is recently maintained — last commit was 38 days ago. It has 2 GitHub stars.

Similar servers

Others in security / ai-ml

View all →

Antigravity Workspace Template96

Workspace template + MCP server for Claude Code, Codex CLI, Cursor & Windsurf. Multi-agent knowledge engine (ag-refresh / ag-ask) that turns any codebase into a queryable AI assistant.

1.2k 2

Memory MCP Server95

Persistent memory using a knowledge graph

86.5k 5

Sequential Thinking MCP Server95

Dynamic problem-solving through sequential thought chains

86.5k 1

Solomd95

A markdown editor — and the bridge to your LLM. Local-first, MIT, ~15 MB. Bundled MCP server lets Claude Code / Codex / Cursor drive your vault directly. 14 AI providers BYOK.

341 4

MCP Security Weekly

Get CVE alerts and security updates for io.github.ExposureGuard/haldir and similar servers.

Community

Discussion

Start a conversation

Ask a question, share a tip, or report an issue.

Has anyone used this with Cursor?How do you handle auth?Any alternatives?

Edit this pageView history

Security AI / ML

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopstdio, sse, http · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "haldir": {
      "env": {
        "HALDIR_API_KEY": "hld_xxx"
      },
      "command": "haldir-mcp"
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/io-github-exposureguard-haldir)](https://mcppedia.org/s/io-github-exposureguard-haldir)

Read me

What io.github.ExposureGuard/haldir does

Identity, secrets, and audit for AI agents. MCP-native. Model-agnostic.

Test This Server

Run this in your terminal to verify the server starts. Then let us know if it worked — your result helps other developers.

uvx 'haldir' 2>&1 | head -1 && echo "✓ Server started successfully"

After testing, let us know if it worked:

README

Haldir — The Guardian Layer for AI Agents

The open-source governance layer for AI agents. Identity, secrets, audit, and policy enforcement — MIT licensed, self-host or use our cloud.

Haldir enforces governance on every AI agent tool call: scoped sessions with spend caps, encrypted secrets the model never sees, hash-chained tamper-evident audit trail, human-in-the-loop approvals, and a proxy that intercepts every MCP call before it reaches your tools. Native SDKs for LangChain, CrewAI, AutoGen, and Vercel AI SDK.

CLI

$ haldir overview

  Haldir tenant overview
  acct_xyz123  ·  tier pro  ·  2026-04-19T18:42:11+00:00

  Status     ● ok
  Actions      4,217 / 50,000   ████░░░░░░░░░░░░░░░░    8.4%
  Spend      $ 47.30 this month
  Sessions        12 active  ·  3/10 agents
  Vault            8 secrets  ·  62 accesses this month
  Audit        1,847 entries  ·  0 flagged (7d)  ·  chain ✓
  Webhooks         2 registered  ·  541 deliveries (24h)  ·  99.82% success
  Approvals        1 pending

Install once, drive the whole platform from the terminal:

pip install haldir
haldir login                           # one-time; stashes API key
haldir overview --watch                # top-style live dashboard
haldir status                          # green/yellow/red component pills
haldir ready                           # exits 0/1, perfect for CI
haldir audit tail --agent my-bot       # the last N entries
haldir audit export --format=jsonl --out audit-2026-04.jsonl
haldir audit verify                    # hash chain integrity check
haldir webhooks deliveries             # last 20 retry attempts
haldir migrate up                      # apply pending schema migrations

Every command takes --json for scripts. haldir --help for the full surface.

Two ways to run Haldir

	Self-host	Cloud (haldir.xyz)
Price	Free forever	Free tier + paid plans
Features	Everything	Everything — same API, same SDKs
You run	API + Postgres	Nothing
Best for	Regulated industries, air-gapped, "must own data"	"Just make it work"

Self-host in 5 minutes

git clone https://github.com/ExposureGuard/haldir.git
cd haldir
cp .env.example .env
python3 -c 'import base64, os; print(base64.urlsafe_b64encode(os.urandom(32)).decode())'
# paste the output into .env as HALDIR_ENCRYPTION_KEY, then:
docker compose up -d
curl http://localhost:

... [View full README on GitHub](https://github.com/ExposureGuard/haldir#readme)

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

51/100across 5 weighted dimensions

How we score →

0255075100

−49

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

No known CVEs.

Checked haldir against OSV.dev.

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is io.github.ExposureGuard/haldir safe to use?: io.github.ExposureGuard/haldir has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.
How do I install io.github.ExposureGuard/haldir?: io.github.ExposureGuard/haldir supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.
What AI clients work with io.github.ExposureGuard/haldir?: io.github.ExposureGuard/haldir is compatible with claude-desktop, cursor, claude-code. It uses stdio and sse and http transport.
Is io.github.ExposureGuard/haldir actively maintained?: io.github.ExposureGuard/haldir is recently maintained — last commit was 38 days ago. It has 2 GitHub stars.

Similar servers

Others in security / ai-ml

View all →

Antigravity Workspace Template96

Workspace template + MCP server for Claude Code, Codex CLI, Cursor & Windsurf. Multi-agent knowledge engine (ag-refresh / ag-ask) that turns any codebase into a queryable AI assistant.

1.2k 2

Memory MCP Server95

Persistent memory using a knowledge graph

86.5k 5

Sequential Thinking MCP Server95

Dynamic problem-solving through sequential thought chains

86.5k 1

Solomd95

A markdown editor — and the bridge to your LLM. Local-first, MIT, ~15 MB. Bundled MCP server lets Claude Code / Codex / Cursor drive your vault directly. 14 AI providers BYOK.

341 4

MCP Security Weekly

Get CVE alerts and security updates for io.github.ExposureGuard/haldir and similar servers.

Community

Discussion

Start a conversation

Ask a question, share a tip, or report an issue.

Has anyone used this with Cursor?How do you handle auth?Any alternatives?