awesome-repositories.com
Blog
awesome-repositories.com

Découvrez les meilleurs dépôts open-source grâce à notre recherche par IA.

ExplorerRecherches sélectionnéesAlternatives open sourceLogiciels auto-hébergésBlogPlan du site
ProjetÀ proposNotre méthodologiePresseServeur MCP
Mentions légalesConfidentialitéConditions d'utilisation
© 2026 Bringes Technology SRL·VAT RO45896025·hello@awesome-repositories.com
·

10 dépôts

Awesome GitHub RepositoriesModel Context Protocol Security

Security controls for interactions between models and external tools.

Distinguishing note: Focuses on protocol-level security for context sharing.

Explore 10 awesome GitHub repositories matching security & cryptography · Model Context Protocol Security. Refine with filters or upvote what's useful.

Awesome Model Context Protocol Security GitHub Repositories

Trouvez les meilleurs dépôts grâce à l'IA.Nous recherchons les dépôts les plus pertinents grâce à l'IA.
  • owasp/cheatsheetseriesAvatar de OWASP

    OWASP/CheatSheetSeries

    32,298Voir sur GitHub↗

    The OWASP Cheat Sheet Series is a comprehensive, community-driven repository of concise security best practices and defensive coding patterns. It serves as a centralized knowledge base for developers and security professionals, providing actionable guidance to secure applications across the entire software development lifecycle. The project covers a vast array of security domains, ranging from fundamental web application hardening and authentication protocols to specialized controls for modern infrastructure and artificial intelligence systems. What distinguishes this project is its decentral

    Ensures safe and authorized interaction between artificial intelligence models and external tools via context protocols.

    Pythonapplication-securityappsecbest-practices
    Voir sur GitHub↗32,298
  • modelcontextprotocol/modelcontextprotocolAvatar de modelcontextprotocol

    modelcontextprotocol/modelcontextprotocol

    8,458Voir sur GitHub↗

    Model Context Protocol is a standardized framework for connecting large language models to external data sources and executable tools. It enables the creation of a universal interface where servers expose tools, resources, and prompts that can be discovered and utilized by various AI clients. The protocol utilizes a JSON-RPC message system that is transport-agnostic, supporting both standard input/output for local processes and HTTP with server-sent events for remote connections. It emphasizes security and control by delegating model sampling to the client to keep API keys secure from servers

    Generates content via a client to ensure API keys remain secure and are not exposed to servers.

    TypeScript
    Voir sur GitHub↗8,458
  • superagent-ai/superagentAvatar de superagent-ai

    superagent-ai/superagent

    6,631Voir sur GitHub↗

    Superagent is an AI safety platform that protects applications from prompt injections, data leaks, and harmful outputs through built-in guardrails. It functions as a prompt injection detection system, data redaction tool, and red team testing tool, automatically removing personally identifiable information and protected health data from AI inputs and outputs while scanning image uploads with vision AI to detect visual prompt injection attacks before processing. The platform routes every prompt through a sequential pipeline of safety checks including injection detection, data redaction, and co

    Scans image uploads with vision AI to detect and block visual prompt injection attacks before processing.

    TypeScriptaianthropicguardrails
    Voir sur GitHub↗6,631
  • crytic/slitherAvatar de crytic

    crytic/slither

    6,141Voir sur GitHub↗

    Trail of Bits wraps Model Context Protocol apps to defend against prompt injection via tool descriptions and ANSI terminal escape codes.

    Pythonethereumsoliditystatic-analysis
    Voir sur GitHub↗6,141
  • microsoft/agent-governance-toolkitAvatar de microsoft

    microsoft/agent-governance-toolkit

    4,522Voir sur GitHub↗

    The agent-governance-toolkit is a framework for enforcing security policies, managing zero-trust identities, and sandboxing the execution of autonomous AI agents. It provides a governance layer designed to control the behavior of agents through the use of a security policy engine, cryptographic identity management, and a runtime execution sandbox. The project distinguishes itself through a multi-tier privilege ring system and a cryptographic identity mesh that secures communication between autonomous entities. It implements a decay-based trust scoring mechanism to track entity reliability and

    Provides a deterministic pattern scanner to verify that defensive language is present in system prompts before deployment.

    Python
    Voir sur GitHub↗4,522
  • opensquilla/opensquillaAvatar de opensquilla

    opensquilla/opensquilla

    4,211Voir sur GitHub↗

    OpenSquilla est un framework d'orchestration d'agents LLM conçu pour coordonner des workflows IA multi-étapes et l'exécution d'outils via des graphes orientés acycliques (DAG). Il fonctionne comme un système centralisé pour gérer des packages de compétences spécialisés et exécuter des séquences de raisonnement complexes. Le projet se distingue par une passerelle de routage qui dirige les tâches vers différents fournisseurs d'IA en fonction de la complexité, du coût et de la performance. Il utilise un système de mémoire IA à plusieurs niveaux qui organise les connaissances de travail, épisodiques et sémantiques à l'aide d'embeddings locaux et de SQLite, ainsi qu'un bac à sable d'exécution sécurisé qui isole le code généré par l'agent via des profils de permission basés sur les risques. La plateforme couvre un large éventail de capacités, incluant le déploiement multicanal vers le web et les plateformes de messagerie, la planification automatisée des tâches via cron, et un pont Model Context Protocol pour se connecter à des outils externes. Elle fournit également des outils complets de surveillance et d'observabilité pour suivre les coûts en jetons, auditer les décisions d'exécution et gérer un catalogue de compétences réutilisables. Le système inclut des utilitaires en ligne de commande pour l'initialisation de l'espace de travail et la gestion du cycle de vie des compétences.

    Deno AI Agent escapes metadata and tool results using XML to close common prompt injection attack vectors.

    Pythonagentaiai-agents
    Voir sur GitHub↗4,211
  • atmosphere/atmosphereAvatar de Atmosphere

    Atmosphere/atmosphere

    3,780Voir sur GitHub↗

    Atmosphere is a Java-based framework for building and coordinating AI agents. It provides a real-time transport layer for streaming data via WebSockets, SSE, gRPC, and WebTransport, alongside a multi-agent orchestration framework for managing agent fleets through sequential, parallel, and graph-based execution workflows. The project features a durable workflow engine that persists agent state as snapshots, allowing long-running tasks to survive system restarts and incorporate human-in-the-loop approvals. It also implements Model Context Protocol servers to expose tools, resources, and prompt

    Uses confinement blocks prepended to system prompts to ensure agents adhere to defined security boundaries.

    Javaacpagentic-aiembabel
    Voir sur GitHub↗3,780
  • cyberalbsecop/awesome_gpt_super_promptingAvatar de CyberAlbSecOP

    CyberAlbSecOP/Awesome_GPT_Super_Prompting

    3,654Voir sur GitHub↗

    This repository is a collection of specialized toolsets and libraries for large language model prompt engineering and security testing. It provides a library of advanced templates and frameworks designed to optimize the quality and specificity of model responses. The project includes resources for red teaming and security research, featuring a repository of prompts designed to bypass safety filters and operational constraints. It also provides techniques for system prompt extraction to reveal the internal instructions and configurations of AI personas. The collection covers a broader surface

    Provides security controls and prompt-based rules to defend against malicious prompt injection attacks.

    HTMLadversarial-machine-learningagentai
    Voir sur GitHub↗3,654
  • verazuo/jailbreak_llmsAvatar de verazuo

    verazuo/jailbreak_llms

    3,563Voir sur GitHub↗

    This project is a comprehensive ecosystem of frameworks, toolkits, and datasets designed to evaluate model vulnerabilities and analyze jailbreak patterns. It serves as an adversarial testing framework and research toolkit for measuring the effectiveness of safety guardrails in large language models. The system includes a library of real-world prompt injection datasets harvested from social media to study bypass strategies. It provides specialized tools for semantic attack analysis and prompt visualization, allowing for the mapping of relationships between adversarial prompts to discover commo

    Ships a library of real-world prompt injection datasets harvested from social media to study bypass strategies.

    Jupyter Notebookchatgptjailbreakjailbreaking
    Voir sur GitHub↗3,563
  • harishsg993010/damn-vulnerable-mcp-serverAvatar de harishsg993010

    harishsg993010/damn-vulnerable-MCP-server

    1,306Voir sur GitHub↗

    This project is an educational and research platform designed to simulate security vulnerabilities within AI-integrated systems and Model Context Protocol implementations. It provides a controlled environment where users can practice identifying and mitigating common attack vectors, such as prompt injection and unauthorized code execution, by interacting with intentionally insecure tools and protocol configurations. The platform distinguishes itself by offering a dedicated laboratory for auditing Model Context Protocol integrations. It exposes server-side functions as discoverable tools and p

    Provides a dedicated laboratory for auditing the security posture of Model Context Protocol implementations and tool interactions.

    Python
    Voir sur GitHub↗1,306
  1. Home
  2. Security & Cryptography
  3. Model Context Protocol Security

Explorer les sous-tags

  • Prompt Injection Defenses3 sous-tagsSecurity controls that protect LLM applications from prompt injection via tool descriptions and terminal escape codes. **Distinct from Model Context Protocol Security:** Distinct from Model Context Protocol Security: focuses on defending against prompt injection attacks specifically, not general protocol-level security.
  • Resource Access RestrictionsControls that limit interaction with sensitive endpoints or resources using specific authorization flows. **Distinct from Model Context Protocol Security:** Focuses on the granular restriction of specific endpoints within the protocol rather than general protocol security
  • Secure Generation FlowsGeneration of model content through a client to isolate API keys from the server. **Distinct from Model Context Protocol Security:** Focuses on the architectural flow of routing generation through a client for key security, not just protocol security.