#Agent-security

Showing 32 of 32 repositories tagged #agent-security, ranked by stars

Tencent
Tencent
AI-Infra-Guard

A full-stack AI Red Teaming platform securing AI ecosystems via OpenClaw Security Scan, Agent Scan, Skills Scan, MCP scan, AI Infra scan and LLM jailbreak evaluation.

Score
100
★ 4.1k ⑂ 393
Python
nolabs-ai
nolabs-ai
nono

Sandbox any AI agent in seconds - zero setup, zero latency.

Score
100
★ 3.0k ⑂ 204 +5/day
Rust
Pantheon-Security
Pantheon-Security
medusa

AI-first security scanner. NEW in v2026.7: Claude Code compromise detection — vet .claude/ hooks, permissions & skills before you clone — plus an always-on AI attack-signature scanner and native Rust & PHP rules. Also: medusa scan --git to vet any repo, medusa secrets scan for leaked API keys. 40,000+ patterns, zero setup.

Score
100
★ 912 ⑂ 152 +19/day
Python
luckyPipewrench
luckyPipewrench
pipelock

Open-source AI agent firewall for MCP security and agent egress. Scans mediated HTTP, MCP, A2A, and WebSocket traffic for exfiltration, SSRF, and prompt injection, and emits mediator-signed action receipts: verifiable audit evidence from outside the agent.

Score
100
★ 751 ⑂ 87 +1/day
Go
SponsioLabs
SponsioLabs
Sponsio

Deterministic safety solutions for probabilistic AI agents

Score
0
★ 466 ⑂ 28 +1/day
Python
lasso-security
lasso-security
mcp-gateway

A plugin-based gateway that orchestrates other MCPs and allows developers to build upon it enterprise-grade agents.

Score
100
★ 377 ⑂ 31
Python
matank001
matank001
cursor-security-rules

This repository contains Cursor Security Rules designed to improve the security of both development workflows and AI agent usage within the Cursor environment. These rules aim to enforce safe coding practices, control sensitive operations, and reduce risk in AI-assisted development.

Score
41
★ 375 ⑂ 35 +2/day
duncatzat
duncatzat
vigils

A local control plane for AI agents — see what they do, approve what matters, keep secrets out. Rust + Tauri + Chrome MV3.

Score
50
★ 336 ⑂ 20
Rust
backbay-labs
backbay-labs
clawdstrike

AI EDR for developer workstations and autonomous agent fleets. Build Swarm Detection & Response platforms with Clawdstrike.

Score
94
★ 283 ⑂ 34
TypeScript
Asymptote-Labs
Asymptote-Labs
agent-beacon

Agent Beacon is the world's first open-source telemetry layer for AI agents wherever they run: locally, in CI, or in the cloud.

Score
88
★ 280 ⑂ 13 +15/day
Go
PrismorSec
PrismorSec
prismor

Runtime security for Agents. Blocks dangerous commands, prevent secret leaks, stop prompt injection, gate risky package installs and visibility and control over tool calls.

Score
82
★ 227 ⑂ 18 +5/day
Python
KryptosAI
KryptosAI
mcp-observatory

Test, secure, and monitor MCP servers before agents depend on them.

Score
100
★ 142 ⑂ 24 +1/day
TypeScript
alexgreensh
alexgreensh
repo-forensics

Offline security scanner for AI-agent repos, skills, plugins, and MCP servers.

Score
67
★ 137 ⑂ 18 +11/day
Python
AndrewAltimit
AndrewAltimit
template-repo

Agent orchestration & security template featuring MCP tool building, agent2agent workflows, mechanistic interpretability on sleeper agents, and agent integration via CLI wrappers

Score
0
★ 130 ⑂ 28
Rust
jnMetaCode
jnMetaCode
shellward

AI Agent Security Middleware — 8-layer defense, DLP data flow, prompt injection detection, zero dependencies. SDK + MCP server for Claude Code, Cursor, LangChain, Hermes Agent & more.

Score
76
★ 122 ⑂ 20 +6/day
TypeScript
sinewaveai
sinewaveai
agent-security-scanner-mcp

Security scanner MCP server for AI coding agents. Prompt injection firewall, package hallucination detection (4.3M+ packages), 1000+ vulnerability rules with AST & taint analysis, auto-fix.

Score
71
★ 112 ⑂ 10 +1/day
JavaScript
Gk0Wk
Gk0Wk
ClawGuard

The antivirus for OpenClaw — approve dangerous actions, scan skills, block secret leaks, and keep humans in control, for safety.

Score
53
★ 100 ⑂ 2
TypeScript
faramesh
faramesh
faramesh-core

Governance-as-Code for AI agents. Declarative constraints with deterministic enforcement. Provisioning Identity, Tool-based rules, Brokering Credentials & Ensuring safe deployment

Score
0
★ 95 ⑂ 19
Go
Aimer-zero
Aimer-zero
redforge-ai

Open-core AI red teaming and offensive AI security evaluation platform.

Score
65
★ 81 ⑂ 16
Python
GenseeAI
GenseeAI
gensee-crate

Runtime safety for AI coding agents with real-time enforcement, system-event monitoring, and long-horizon provenance. Supports Claude Code and Codex on native macOS.

Score
0
★ 79 ⑂ 9
Rust
peg
peg
rampart

Open-source firewall for AI agents. Policy engine that audits and controls what OpenClaw, Claude Code, Cursor, Codex, and any AI tool can do on your machine.

Score
59
★ 76 ⑂ 12 +1/day
Go
imran-siddique
imran-siddique
agent-os

[DEPRECATED] Moved to microsoft/agent-governance-toolkit

Score
0
★ 72 ⑂ 21 +1/day
Python
agentrhq
agentrhq
authsome

Credential gateway for AI agents. Log in once via Oauth2 or API Key. Every agent stays authenticated — headless, no SaaS, agents never see your credentials.

Score
33
★ 66 ⑂ 7 +5/day
Python
ArmorerLabs
ArmorerLabs
Armorer

Local control plane for running AI agents with sandboxes, approvals, guardrails, credentials, and runtime health.

Score
47
★ 58 ⑂ 3
TypeScript
Mindburn-Labs
Mindburn-Labs
helm-ai-kernel

Fail-closed execution firewall for AI agents: quarantine MCP tools, proxy OpenAI-compatible requests, emit signed receipts, and verify EvidencePacks offline.

Score
0
★ 49 ⑂ 2
Go
darfaz
darfaz
clawmoat

The open-source agent firewall. Prevent AI agents from leaking data, using dangerous tools, and importing poisoned dependencies.

Score
29
★ 41 ⑂ 6 +1/day
JavaScript
ArmorerLabs
ArmorerLabs
Armorer-Guard

Fast local Rust scanner for AI-agent prompt injection, credential leaks, exfiltration, and risky tool calls

Score
35
★ 40 ⑂ 10
Rust
webpro255
webpro255
awesome-ai-agent-attacks

A curated timeline of real AI agent security incidents, breaches, and vulnerabilities (2024-2026). Every entry sourced and dated.

Score
24
★ 34 ⑂ 3 +5/day
opena2a-org
opena2a-org
hackmyagent

Metasploit for AI agents: scan, attack, and fix AI agents and MCP servers. Open source security toolkit.

Score
18
★ 31 ⑂ 3
TypeScript
backbay-labs
backbay-labs
hush

Portable security rules for the action boundary of AI agents

Score
0
★ 24 ⑂ 1 +24/day
Rust
sonuoffsec
sonuoffsec
DVAP

An OWASP-aligned intentionally vulnerable platform for learning and testing AI, LLM, RAG, MCP, and Agentic AI security.

Score
12
★ 22 ⑂ 5 +2/day
TypeScript
gatsby-sec
gatsby-sec
llm-sec-range

🛡️ 大模型攻防渗透测试靶场 · 提示注入CTF / OWASP LLM Top10 / 脆弱Agent / 资料聚合。目标模型可切换:DeepSeek直连、OpenRouter中转站(国产+国外十余款小模型)、本地Ollama(DeepSeek-R1 8B离线)。一键本地部署。

Score
6
★ 13 ⑂ 5
Python
Related Topics
#ai-security#llm-security#ai-agents#mcp#prompt-injection#security#mcp-security#cybersecurity#security-tools#supply-chain-security#guardrails#openclaw

© 2026 GitRepoTrend · GitHub repositories by topic · Updated weekly