Agent Security Python Packages

mcpsafetywarden

MCP servers expose tools with no information about what they actually do at runtime. mcpsafetywarden sits between your agent and any MCP server, profiling tool behavior, blocking destructive calls, and running active security audits before you trust them in a workflow.

sunglasses

Sunglasses for AI agents. Protection layer + neighborhood watch.

medusa-security

AI-first security scanner with 76 analyzers, 9,600+ detection rules, and repo poisoning detection for AI/ML, LLM agents, and MCP servers. Scan any GitHub repo with: medusa scan --git user/repo

assay-it

CI-native evidence compiler for agent systems: MCP policy enforcement, evidence receipts, Trust Basis claims, and reviewable artifacts.

agent-security-harness

466 security tests for AI agent systems — MCP, A2A, x402/L402, decision governance, benchmark integrity, skill supply chain. AIUC-1 pre-cert, NIST AI 800-2 aligned, 5 DOIs. v4.3.0

agentseal

Security toolkit for AI agents. Scan your machine for dangerous skills and MCP configs, monitor for supply chain attacks, test prompt injection resistance, and audit live MCP servers for tool poisoning.

ziran

自然 ZIRAN is an open-source security testing framework for AI agents. It discovers dangerous tool chain compositions via knowledge graph analysis, detects execution-level side effects (not just text output), and runs multi-phase trust exploitation campaigns that model real attacker behaviour.

mvar-security

MVAR: Information Flow Control for LLM Agent Runtimes

agent-aegis

LLM guardrails & prompt injection detection for Python. Auto-instruments LangChain, CrewAI, OpenAI, LiteLLM + 8 more frameworks. PII masking, toxicity detection, policy CI/CD. One line, zero code changes.

clawzero

Deterministic execution boundary for AI agents. IFC enforcement at the sink. 5 frameworks. 50 attack vectors. Apache 2.0.

agentshield-guard

Official Python SDK for AgentShield — prompt-injection detection for LLM agents.

bluerock-oss

metamorphic rock which glows blue when activated, sheaths python, MCP & more

skillfortify

First formal security scanner for AI agent skills & plugins. Static analysis, supply chain verification, SBOM generation. 22 frameworks supported including MCP, LangChain, CrewAI.

drako

The Python Governance Platform for AI Agents — compliance middleware for LangGraph, CrewAI, AutoGen

buzur

Buzur is an open-source 25-phase scanner that protects AI agents and LLM applications from indirect prompt injection attacks (OWASP LLM Top 10 #1).

agentic-security

Agentic LLM Vulnerability Scanner / AI red teaming kit 🧪

omega-walls

Omega Walls — a deterministic runtime security layer for RAG and AI agents that detects prompt injection, tool abuse, and data exfiltration via cumulative risk modeling.

pipelock-verify

Verify Pipelock action receipts (Ed25519-signed, chain-linked).

cerberus-ai

Embeddable runtime security for AI agents that detects, correlates, and interrupts outbound exfiltration before guarded tools execute.

canopy-mcp

Canopy allows you to write and enforce policies on agentic tool flows

checkrd

Policy enforcement, kill switch, and signed telemetry for AI agent API calls. Python + JavaScript SDKs with a WASM-sandboxed policy engine.

tessera-rs

Pure-Rust implementations of the Tessera security primitives, exposed via PyO3.

sponsio

Deterministic safety solutions for probabilistic AI agents

curiosity-cat

A safety framework for AI agents that explore the internet. Standing orders, crowdsourced threat intelligence, and real close-call stories.