security-mcp
| Crates.io | security-mcp |
| lib.rs | security-mcp |
| version | 0.1.6-alpha |
| created_at | 2026-01-10 18:42:16.604587+00 |
| updated_at | 2026-01-10 20:37:54.587737+00 |
| description | MCP (Model Context Protocol) server providing security screening, injection detection, and threat analysis |
| homepage | |
| repository | https://github.com/tzervas/security-mcp |
| max_upload_size | |
| id | 2034540 |
| size | 126,431 |
Tyler Zervas (tzervas)
documentation
README
security-mcp
MCP server for security screening: prompt-injection defense, PII detection, and secrets scanning.
This crate is intended to sit “in front of” other tools/servers, so inputs and outputs can be screened consistently.
Status
Alpha / under active development. Rules and thresholds will evolve.
What It Does Today (Code-Backed)
- Runs an MCP-compatible JSON-RPC server over HTTP/WebSocket.
- Screens text in two directions:
- Input screening (prompt-injection patterns, suspicious encodings)
- Output screening (PII/secrets patterns, high-entropy tokens)
- Supports batch scanning with CPU-parallelism (
rayon).
What It Does Not Do Yet
- Full DLP-grade PII detection (this is heuristic/pattern-based today).
- Policy-driven redaction across structured formats beyond plain text.
Running
cargo run -p security-mcp -- --help
Usage with VS Code / GitHub Copilot
Install the binary:
cargo install security-mcp
Add to your VS Code MCP configuration (typically ~/.config/Code/User/profiles/<profile>/mcp.json or .vscode/mcp.json):
{
"servers": {
"security-mcp": {
"type": "stdio",
"command": "security-mcp",
"args": ["--stdio"]
}
}
}
Important: The
--stdioflag is required for VS Code integration. Without it, the server defaults to HTTP mode on port 3001.
Usage with Claude Desktop
Add to your claude_desktop_config.json:
{
"mcpServers": {
"security-mcp": {
"command": "security-mcp",
"args": ["--stdio"]
}
}
}
License
MIT