Show HN: A Trust Index for MCP Servers
MCP服务器安全评分工具上线,CI集成与采购审查一步到位。
As a security professional whose employer has given Claude and various other AI tooling to everyone at the company, I kept finding myself as the bottl…
MCP服务器安全评分工具上线,CI集成与采购审查一步到位。
As a security professional whose employer has given Claude and various other AI tooling to everyone at the company, I kept finding myself as the bottl…
无需注册,秒级扫描任何公开GitHub仓库的安全漏洞,适用于遗留代码、外包项目或求职者作业审查。
TL;DR You can now paste any public GitHub repo URL and get a security grade back in seconds, no signup. It runs static analysis, secret detection, and…
一款由思科开源的AI技能安全扫描器,5分钟快速检测提示注入与数据泄露风险。
Article URL: https://github.com/cisco-ai-defense/skill-scanner Comments URL: https://news.ycombinator.com/item?id=48656076 Points: 2 # Comments: 0
集8大安全扫描器于一身,GitHub Action一键集成,统一输出漏洞报告,开源利器守护CI/CD安全。
Article URL: https://github.com/skaldlab/muninn Comments URL: https://news.ycombinator.com/item?id=48605644 Points: 1 # Comments: 0
使用Claude LLM扫描AUR软件包中的恶意代码,成功揪出伪装成浏览器补丁的问题包,为Arch用户筑起安全防线。
Article URL: https://github.com/manticore-projects/aurscan/tree/main Comments URL: https://news.ycombinator.com/item?id=48538118 Points: 1 # Comments:…
用安全工具扫描10个知名网站,发现卫报仅得C级72分,结果直白无修饰。
A few weeks ago I shipped SecURL — a passive external security posture tool I'd been building on and off for longer than I care to admit. The pitch is…
20个AI仓库密钥扫描告警全部是误报,直指检测工具的常见陷阱与真实局限。
getdebug ships a secret scanner as part of its free tier — committed credentials are the one finding category we surface without an account, because t…
MCP 服务器安全守护神:自动拦截违规工具调用并记录所有操作,基于 OWASP Top 10 风险策略。
Article URL: https://github.com/GT-Projects256/mcpguard Comments URL: https://news.ycombinator.com/item?id=48346248 Points: 2 # Comments: 0
零配置扫描MCP服务器安全,无需联网和API密钥,一键检测插件风险。
Article URL: https://github.com/allenwu-blip/mcpaudit Comments URL: https://news.ycombinator.com/item?id=48240714 Points: 1 # Comments: 0
开源安全工具,30秒检测恶意IDE扩展,4级风险模型权限分析,支持7+主流IDE。
I have been working on this tool for a while now as there is a clear gap in Developer workstation security. You must have seen how Github got hacked d…