{"passport":{"unfragile":{"@version":"1.0","version":"2026-05","artifact":{"id":"smithery_prooflayer-agent-security-scanner","slug":"prooflayer-agent-security-scanner","name":"agent-security-scanner","type":"mcp","url":"https://www.npmjs.com/package/agent-security-scanner-mcp","page_url":"https://unfragile.ai/prooflayer-agent-security-scanner","categories":["mcp-servers","code-review-security"],"tags":["mcp","model-context-protocol","smithery:prooflayer/agent-security-scanner"],"pricing":{"model":"open_source","free":true,"starting_price":null},"status":"active","verified":false},"capabilities":[{"id":"smithery_prooflayer-agent-security-scanner__cap_0","uri":"capability://safety.moderation.ast.based.vulnerability.scanning","name":"ast-based vulnerability scanning","description":"This capability utilizes AST (Abstract Syntax Tree) parsing via tree-sitter to analyze code for vulnerabilities across multiple programming languages. It allows for more accurate detection of security issues by understanding the code structure rather than relying solely on regex patterns, which are less reliable. When tree-sitter is unavailable, it falls back to regex, ensuring flexibility in various environments.","intents":["How can I scan my codebase for security vulnerabilities?","What tools can I use to ensure my code follows security best practices?","I need to check if my code has any known security issues."],"best_for":["developers ensuring code security in multi-language projects"],"limitations":["Performance may degrade with very large codebases due to AST parsing overhead."],"requires":["Node.js 14+","tree-sitter library installed"],"input_types":["source code files"],"output_types":["vulnerability reports","structured data"],"categories":["safety-moderation","security-tools"],"confidence":0.5,"matches":0,"success_rate":0},{"id":"smithery_prooflayer-agent-security-scanner__cap_1","uri":"capability://safety.moderation.taint.analysis.for.user.input.tracking","name":"taint analysis for user input tracking","description":"This capability implements taint analysis to track the flow of user input through the code, identifying potential security risks when user data reaches sensitive operations or functions. By analyzing the data flow, it can pinpoint where user input may compromise security, allowing developers to take corrective actions.","intents":["How can I track user input through my application to prevent security vulnerabilities?","What methods are available to analyze data flow in my code?","I need to ensure user inputs are handled securely in my application."],"best_for":["security-focused developers working on data-sensitive applications"],"limitations":["May require manual configuration for complex data flows."],"requires":["Node.js 14+","specific language support"],"input_types":["source code files"],"output_types":["taint analysis reports","structured data"],"categories":["safety-moderation","data-analysis"],"confidence":0.5,"matches":0,"success_rate":0},{"id":"smithery_prooflayer-agent-security-scanner__cap_2","uri":"capability://safety.moderation.automatic.vulnerability.fix.suggestions","name":"automatic vulnerability fix suggestions","description":"This capability analyzes detected vulnerabilities and provides automatic fix suggestions based on established security patterns and best practices. By leveraging a database of common vulnerabilities and their remedies, it assists developers in quickly addressing security issues in their code.","intents":["How can I automatically fix security vulnerabilities in my code?","What suggestions can I get for resolving detected security issues?","I need help with fixing vulnerabilities identified in my application."],"best_for":["developers looking to streamline their security remediation process"],"limitations":["Suggestions may not cover all edge cases and require manual review."],"requires":["Node.js 14+","access to vulnerability database"],"input_types":["vulnerability reports"],"output_types":["fix suggestions","structured data"],"categories":["safety-moderation","automation-workflow"],"confidence":0.5,"matches":0,"success_rate":0},{"id":"smithery_prooflayer-agent-security-scanner__cap_3","uri":"capability://safety.moderation.package.hallucination.detection","name":"package hallucination detection","description":"This capability scans and verifies package existence across multiple repositories, including npm, PyPI, and others, to detect hallucinated packages that may not exist. By cross-referencing a database of over 4.3 million packages, it ensures that developers are not misled by incorrect package names or versions.","intents":["How can I verify if a package I want to use actually exists?","What tools can help me avoid using non-existent packages?","I need to check for package hallucinations in my dependencies."],"best_for":["developers managing dependencies in large projects"],"limitations":["Dependent on the accuracy of the package database."],"requires":["Node.js 14+","internet access for package verification"],"input_types":["package names"],"output_types":["verification reports","structured data"],"categories":["safety-moderation","data-processing-analysis"],"confidence":0.5,"matches":0,"success_rate":0},{"id":"smithery_prooflayer-agent-security-scanner__cap_4","uri":"capability://safety.moderation.prompt.injection.attack.detection","name":"prompt injection attack detection","description":"This capability analyzes AI agent prompts to detect potential prompt injection attacks that could manipulate the agent's behavior. By examining the structure and content of prompts, it identifies suspicious patterns that may indicate an attack, allowing developers to secure their AI interactions.","intents":["How can I ensure my AI prompts are secure from injection attacks?","What methods can I use to detect prompt injection vulnerabilities?","I need to analyze my AI agent's prompts for security risks."],"best_for":["developers building AI agents with security in mind"],"limitations":["Detection may not cover all possible attack vectors."],"requires":["Node.js 14+","specific AI framework integration"],"input_types":["prompt text"],"output_types":["detection reports","structured data"],"categories":["safety-moderation","automation-workflow"],"confidence":0.5,"matches":0,"success_rate":0}],"trust":{"score":33,"verified":false,"data_access_risk":"high","permissions":["Node.js 14+","tree-sitter library installed","specific language support","access to vulnerability database","internet access for package verification","specific AI framework integration"],"failure_modes":["Performance may degrade with very large codebases due to AST parsing overhead.","May require manual configuration for complex data flows.","Suggestions may not cover all edge cases and require manual review.","Dependent on the accuracy of the package database.","Detection may not cover all possible attack vectors.","builder identity is not verified yet","no observed match outcomes yet"],"rank_breakdown":{"adoption":0.05,"quality":0.45,"ecosystem":0.49000000000000005,"match_graph":0.25,"freshness":0.6,"weights":{"adoption":0.25,"quality":0.25,"ecosystem":0.15,"match_graph":0.23,"freshness":0.12}},"observed_outcomes":{"matches":0,"success_rate":0,"avg_confidence":0,"top_intents":[],"last_matched_at":null},"maintenance":{"status":"active","updated_at":"2026-05-24T12:16:27.444Z","last_scraped_at":"2026-05-03T15:19:34.640Z","last_commit":null},"community":{"stars":null,"forks":null,"weekly_downloads":null,"model_downloads":null,"model_likes":null}},"distribution":{"claim_url":"https://unfragile.ai/submit?claim=prooflayer-agent-security-scanner","compare_url":"https://unfragile.ai/compare?artifact=prooflayer-agent-security-scanner"}},"signature":"IhxfdLFtQ4lAIeRdZffSim9JnpbYeM3bXeLPPtc4llagVUZVujovTWity0vRyMX4N1RUwqrQrgimOyZknE0EAA==","signedAt":"2026-06-21T15:28:29.581Z","signedBy":"unfragile.ai","version":1},"_links":{"self":"https://unfragile.ai/api/v1/passport/prooflayer-agent-security-scanner","artifact":"https://unfragile.ai/prooflayer-agent-security-scanner","verify":"https://unfragile.ai/api/v1/verify?slug=prooflayer-agent-security-scanner","publicKey":"https://unfragile.ai/api/v1/trust-passport-public-key","spec":"https://unfragile.ai/trust","schema":"https://unfragile.ai/schema.json","docs":"https://unfragile.ai/docs"}}