Config is the same across clients — only the file and path differ.
{
"mcpServers": {
"io-github-ormuzdo-agentic-security-shield": {
"args": [
"-y",
"skills"
],
"command": "npx"
}
}
}Are you the author?
Add this badge to your README to show your security score and help users find safe servers.
Drop-in security configuration for AI coding agents. One config file in your > project root → your AI agent generates secure code by default.
Run this in your terminal to verify the server starts. Then let us know if it worked — your result helps other developers.
npx -y 'skills' 2>&1 | head -1 && echo "✓ Server started successfully"
After testing, let us know if it worked:
Five weighted categories — click any category to see the underlying evidence.
No known CVEs.
Checked skills against OSV.dev.
Click any tool to inspect its schema.
Be the first to review
Have you used this server?
Share your experience — it helps other developers decide.
Sign in to write a review.
Others in other
Pi Coding Agent extension (CLI-first) — routes bash/read/grep/find/ls through lean-ctx CLI for strong token savings. Optional MCP bridge can register advanced tools.
Autonomous spec-to-product coding-agent CLI with an MCP server exposing 34 tools over stdio.
97% token reduction for AI coding sessions — zero deps, 21 languages, MCP server
App framework, testing framework, and inspector for MCP Apps.
MCP Security Weekly
Get CVE alerts and security updates for io.github.ormuzdo/agentic-security-shield and similar servers.
Start a conversation
Ask a question, share a tip, or report an issue.
Sign in to join the discussion.
Drop-in security configuration for AI coding agents. One config file in your project root → your AI agent generates secure code by default.
Live MCP endpoint: https://agentic-security-shield-mcp-production.up.railway.app
12 security layers + 6 stack-specific hardening patterns covering the most common mistakes AI coding agents make.
state CSRF (constant-time compare), PKCE for public clients, JWKS-verified ID tokens, claim validation, fixed redirect/login rate-limit + constant-time bcrypt (no user enumeration)?userId=), origin allowlist via verifyClient, maxPayload, heartbeatsharp({ limitInputPixels }), streaming byte capRULES_LITE.md — universal portable NEVER/ALWAYS ruleset for small-context LLMs (Llama, Qwen-small, local models) — paste into the system promptbolt.md, lovable.md, v0.md, replit.md, devin.md) in pure NEVER/ALWAYS format with platform-specific quirksClaude Code · Codex CLI · Cursor · Windsurf · GitHub Copilot · DeepSeek · Kimi · Qwen-Coder · Gemini CLI · Mistral / Codestral · Grok · Ollama / LM Studio · Bolt.new · Lovable.dev · v0.dev · Replit Agent · Devin.
Firebase · Supabase · PocketBase · Appwrite · Convex.
This MCP server supports autonomous machine-to-machine purchase via the x402 protocol with USDC on the Base network.
/.well-known/mcp.jsonagent-card.jsonhttps://agentic-security-shield-mcp-production.up.railway.app| Tool | Description |
|---|---|
get_preview | Product overview, supported tools, all 12 security layers |
get_pricing | Price ($19 USD), payment flow, recipient address |
get_sample | Free sample of Layer 3 (Secrets Guard) with real code examples |
1. GET https://agentic-security-shield-mcp
... [View full README on GitHub](https://github.com/ormuzdo/agentic-security-shield#readme)