Agent-Scan

Visit Tool

Agent Scan is a security scanner for AI agents, MCP servers, and agent skills. It discovers and scans agent components for prompt injections and vulnerabilities, providing a comprehensive security report.

Claim this tool

2Views

At a glance

Pricing

Open Source

Free tier

Yes

API

Yes

Skill level

Technical

About

What is agent-scan?

Agent Scan is a robust security scanner designed for AI agents, Model Context Protocol (MCP) servers, and agent skills. It automatically discovers and inventories installed agent components, including harnesses, MCP servers, and skills, then scans them for common threats such as prompt injections, sensitive data handling, and malware payloads hidden in natural language. The tool supports a wide range of agents like Claude, Cursor, Windsurf, Gemini CLI, and Amazon Q, detecting over 15 distinct security risks. Agent Scan operates in both a CLI scan mode, generating detailed reports, and a background mode for continuous monitoring by security teams. It offers capabilities to scan specific MCP configurations or individual agent skill files, ensuring comprehensive coverage for AI agent security.

Best used for

Ideal for developers and security teams who need to proactively identify security vulnerabilities in their AI agents, MCP servers, and agent skills. Especially valuable for maintaining a secure inventory of agent components and detecting threats like prompt injections and malware payloads.

Common actions

scan AI security

detect vulnerabilities

inventory agent components

secure AI agents

face swapping"AI Agents"github copilotlow-code/no-codedeepfakeworkflowsopen-sourcecollaborationautomated workflow

Capabilities

Key features

Scan AI agents
Detect prompt injections
Identify malware payloads
Inventory agent components
Scan MCP servers
Scan agent skills
Support multiple agents

Target Audience

developerdata scientistproduct manager

Integrations

Not yet documented

Pricing & Plans

Open Source

Free

FAQs

What types of security risks can Agent Scan detect?

Agent Scan can detect over 15 distinct security risks, including prompt injection, tool poisoning, tool shadowing, toxic flows in MCP servers, and malware payloads, untrusted content, credential handling, and hardcoded secrets in agent skills.

Which AI agents are supported by Agent Scan for discovery and scanning?

Agent Scan supports auto-discovery and scanning for a variety of agents, including Windsurf, Cursor, VS Code, Claude Desktop, Claude Code, Gemini CLI, OpenClaw, Amp, Kiro, Antigravity, Codex, and Amazon Q.

Can Agent Scan be used for continuous monitoring in a corporate environment?

Yes, Agent Scan offers a background mode that allows it to scan machines at regular intervals and report results to a Snyk Evo instance. This enables security teams to monitor the company-wide agent supply chain centrally.

Trending

Subcategories trending in AI Agents & Automation

AI Frameworks & Infra Chatbots & Conversational AI Workflow Agents Personal Assistants RAG & Document AI Voice Agents

Trending

Explore

Browse AI tools by category

Content & Design Productivity & Business Coding & Development AI Agents & Automation Research & Education Wellness & Lifestyle Career Development Marketing & Growth Data & Analytics Customer Support & CX Finance E-commerce