← 返回 Skills 市场
fasjdas

MCP Sentinel

作者 fasjdas · GitHub ↗ · v0.1.0 · MIT-0
cross-platform ✓ 安全检测通过
41
总下载
0
收藏
0
当前安装
1
版本数
在 OpenClaw 中安装
/install mcp-sentinel
功能描述
Audits MCP and AI agent config files for risky commands, broad filesystem access, inline secrets, and prompt-injection risks, reporting findings by severity.
使用说明 (SKILL.md)

MCP Sentinel

Use this skill when the user wants to audit MCP server, Cursor, Claude Desktop, Zed, VS Code, or AI agent configuration files for risky command execution, broad filesystem access, inline secrets, or prompt-injection language.

What This Skill Does

MCP Sentinel is an open-source TypeScript CLI:

https://github.com/fasjdas/mcp-sentinel

It scans common MCP and AI agent config files and reports:

  • Interactive shell launchers such as bash, cmd, PowerShell, or sh.
  • Package runner startup commands such as npx, pnpm, yarn, bun, and uvx.
  • Broad filesystem access such as root directories, full Windows drives, parent-directory traversal, or unrestricted workspace flags.
  • Secret-looking environment keys and inline secret-looking values.
  • Destructive startup arguments and pipe-to-shell installers.
  • Suspicious prompt-injection or exfiltration language in config text.

Install Or Run

If the project does not already include MCP Sentinel, clone and build it:

git clone https://github.com/fasjdas/mcp-sentinel
cd mcp-sentinel
npm install
npm run build

Run an audit:

node dist/cli.js audit /path/to/project

Emit JSON:

node dist/cli.js audit /path/to/project --json

Emit GitHub Actions annotations and fail on high severity:

node dist/cli.js audit /path/to/project --github-annotations --fail-on high

Agent Workflow

  1. Identify the project root the user wants scanned.
  2. Run MCP Sentinel against that root.
  3. Summarize findings by severity first.
  4. Explain each finding in practical terms: what access it grants, why it is risky, and what a safer config would look like.
  5. Avoid exposing full secret values in chat. Refer to secret keys by name only.
  6. If the user asks for a fix, scope MCP server paths to the narrowest useful directory, remove shell wrappers where possible, and replace inline secrets with environment references.

Supported Config Locations

  • .mcp.json
  • mcp.json
  • mcp.config.json
  • .cursor/mcp.json
  • .vscode/mcp.json
  • claude_desktop_config.json
  • claude_desktop_config.local.json
  • .zed/settings.json

Notes

MCP Sentinel is a static scanner. It provides best-effort risk signals, not a complete security review. Treat findings as prompts for human review and remediation.

安全使用建议
Reasonable to install as a skill. Before using it, review the referenced MCP Sentinel CLI and npm dependencies as third-party code, and run scans only on project roots you intend to inspect because configuration files may contain secret-looking values.
能力评估
Purpose & Capability
The stated purpose is auditing MCP and AI-agent configuration files for risky commands, broad filesystem access, inline secrets, and prompt-injection text; the listed capabilities match that purpose.
Instruction Scope
The workflow is user-directed: identify the project root, run the scanner, summarize findings, avoid exposing full secret values, and only make fixes if the user asks.
Install Mechanism
The skill instructs users to clone and build a third-party GitHub TypeScript CLI with npm. This is disclosed and purpose-aligned, but the upstream repository and dependencies should be treated as separate software to review before running.
Credentials
Reading common MCP, editor, and agent configuration files is proportionate to the audit purpose, and the skill names specific supported config locations.
Persistence & Privilege
No persistence, background execution, privilege escalation, credential storage, automatic mutation, or destructive behavior is present in the skill artifact.
如何使用
  1. 确保已安装 OpenClaw(本地或 Docker 部署)
  2. 在对话框中输入安装命令:/install mcp-sentinel
  3. 安装完成后,直接呼叫该 Skill 的名称或使用 /mcp-sentinel 触发
  4. 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v0.1.0
Initial public release of the MCP Sentinel skill wrapper for auditing MCP and AI agent configuration risk.
元数据
Slug mcp-sentinel
版本 0.1.0
许可证 MIT-0
累计安装 0
当前安装数 0
历史版本数 1
常见问题

MCP Sentinel 是什么?

Audits MCP and AI agent config files for risky commands, broad filesystem access, inline secrets, and prompt-injection risks, reporting findings by severity. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 41 次。

如何安装 MCP Sentinel?

在 OpenClaw 或 Claude Code 对话框中运行命令「/install mcp-sentinel」即可一键安装,无需额外配置。

MCP Sentinel 是免费的吗?

是的,MCP Sentinel 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。

MCP Sentinel 支持哪些平台?

MCP Sentinel 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。

谁开发了 MCP Sentinel?

由 fasjdas(@fasjdas)开发并维护,当前版本 v0.1.0。

推荐 Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463283 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259410 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200423 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191115 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190156 · by oswalpalash

💬 留言讨论