GuardRail V2.0 (Enterprise)
БесплатноНе проверенGuardRail MCP is an enterprise agent security server that provides multi-language code analysis, dependency scanning, and container security checks, with RBAC,
Описание
GuardRail MCP is an enterprise agent security server that provides multi-language code analysis, dependency scanning, and container security checks, with RBAC, policy packs, and audit logging.
README
Release License: MIT Tests Website MCPize
Hybrid multi-language security analysis over MCP for AI-assisted development workflows.
GuardRail exposes tools that scan source and infrastructure text for high-signal issues (secrets, dangerous APIs, injection patterns, IaC misconfigurations), with optional tree-sitter structural checks, dependency inventory/OSV, SARIF/SBOM export, and an enterprise policy gateway.
| Resource | URL |
|---|---|
| Website | https://secret4422.github.io/guardrail-mcp/ |
| MCPize listing | https://mcpize.com/mcp/guardrail |
| Accuracy policy | docs/ACCURACY.md |
| Security / threat model | docs/SECURITY_MODEL.md |
| Examples | docs/EXAMPLES.md |
| Performance | docs/PERFORMANCE.md |
| Test results | docs/test-results.md |
| Enterprise | docs/ENTERPRISE.md |
Scope (read this)
- Does: static analysis of text you provide; redacts many secret-shaped substrings in excerpts.
- Does not: execute scanned code; replace commercial SAST/DAST; guarantee zero false positives/negatives; provide SOC2 certification by itself.
- Website playground: browser-only demonstration (
docs/ACCURACY.md). Production use = Python MCP/CLI.
Quick start
git clone https://github.com/SECRET4422/guardrail-mcp.git
cd guardrail-mcp
pip install -r requirements.txt
export PYTHONPATH=$PWD
python -m unittest discover -s tests -v
python -m guardrail --mode stdio
MCP client configuration
{
"mcpServers": {
"guardrail": {
"command": "python",
"args": ["-m", "guardrail", "--mode", "stdio"],
"cwd": "/absolute/path/to/guardrail-mcp",
"env": { "PYTHONPATH": "/absolute/path/to/guardrail-mcp" }
}
}
}
CLI scan (ground truth)
python - <<'PY'
from pathlib import Path
from guardrail.hybrid_scan import hybrid_scan
r = hybrid_scan(
Path("examples/vulnerable_sample.py").read_text(encoding="utf-8"),
filename="examples/vulnerable_sample.py",
)
print(r["status"], r["security_verdict"], r["issue_count"], r.get("engines"))
PY
examples/ contains intentional insecure fixtures for tests and demos only (labeled in-file). Values are synthetic.
Capabilities
| Area | Implementation |
|---|---|
| Secrets / high-signal patterns | rules.py, language grids |
| Python AST + multi-hop taint | ast_engine.py, taint.py |
| Tree-sitter (optional grammars) | treesitter_engine.py |
| Repo / git-diff scan | repo_scan.py, git_scan.py |
| Dependencies / OSV | deps.py (network optional) |
| SARIF / SBOM | sarif_export.py, sbom.py |
| Enterprise auth, RBAC, policy | guardrail/enterprise/ |
| Custom rules / plugins | rule_engine.py, plugins.py |
Tests
PYTHONPATH=$PWD python -m unittest discover -s tests -v
Published summary: docs/test-results.md (reproduce with the command above).
Performance
Indicative micro-benchmarks are in docs/PERFORMANCE.md and benchmarks/. Re-run on your machine before relying on numbers.
Enterprise mode
Optional multi-tenant gateway (API keys/JWT, RBAC, path sandbox, audit, rate limits). See docs/ENTERPRISE.md. Do not deploy HTTP enterprise mode without authentication.
Hosted listing
Optional commercial listing: mcpize.com/mcp/guardrail.
Self-hosting the MIT core remains free. Pricing on MCPize is set in that marketplace dashboard.
Security
- Threat model: docs/SECURITY_MODEL.md
- Vulnerability reporting: SECURITY.md
- Claims policy: docs/ACCURACY.md
License
MIT — LICENSE.
Установить GuardRail V2.0 (Enterprise) в Claude Desktop, Claude Code, Cursor
unyly install guardrail-mcp-v2-0-enterpriseСтавит в Claude Desktop, Claude Code, Cursor и VS Code — сам разбирается с npx, uvx и сборкой из исходников.
Впервые? Поставь CLI: curl -fsSL https://unyly.org/install | sh
Или настроить вручную
Выполни в терминале:
claude mcp add guardrail-mcp-v2-0-enterprise -- uvx --from git+https://github.com/SECRET4422/guardrail-mcp guardrail-mcpFAQ
GuardRail V2.0 (Enterprise) MCP бесплатный?
Да, GuardRail V2.0 (Enterprise) MCP бесплатный — установка в пару кликов через Unyly без оплаты.
Нужен ли API-ключ для GuardRail V2.0 (Enterprise)?
Нет, GuardRail V2.0 (Enterprise) работает без API-ключей и переменных окружения.
GuardRail V2.0 (Enterprise) — hosted или self-hosted?
Self-hosted: сервер запускается локально на твоей машине командой из раздела установки.
Как установить GuardRail V2.0 (Enterprise) в Claude Desktop, Claude Code или Cursor?
Открой GuardRail V2.0 (Enterprise) на unyly.org, выбери вкладку своего клиента (Claude Desktop, Claude Code, Cursor) и нажми Install — конфиг сгенерируется автоматически, без правки JSON.
Похожие MCP
GitHub
PRs, issues, code search, CI status
автор: GitHubFilesystem
Secure file operations with configurable access controls.
Memory
Knowledge graph-based persistent memory system.
Template MCP Server
A CLI tool to create a new Model Context Protocol server project with TypeScript support, dual transport options, and an extensible structure
автор: mcpdotdirectCompare GuardRail V2.0 (Enterprise) with
Не уверен что выбрать?
Найди свой стек за 60 секунд
Автор?
Embed-бейдж для README
Похожее
Все в категории development
