mcp-warden

ernestprovo23/mcp-warden

★ 2 stars Python Security Updated 4d ago

CI-first MCP supply-chain integrity gate + runtime tool-result inspection. Pin an MCP server's tool surface, fail CI on drift, and block poisoned tool results (ANSI/secret-echo/exfil) at runtime.

View on GitHub → Try with Claude — $10 free →

Quick Install

Copy the config for your editor. Some servers may need additional setup — check the README.

Add to claude_desktop_config.json:

{
  "mcpServers": {
    "mcp-warden": {
      "command": "uvx",
      "args": [
        "mcp-warden"
      ]
    }
  }
}

Or install with pip: pip install mcp-warden

README Excerpt

**CI-first MCP supply-chain integrity gate.** Pin the *declared* tool / resource / prompt surface of an [MCP](https://modelcontextprotocol.io) server, then fail CI when that surface drifts from an approved baseline. > mcp-warden is an **MCP supply-chain integrity gate, not a full agent firewall.** > v0.1 verifies that a server's *declared* surface has not changed since a human

Tools (4)

categorylocksariftimeout

Topics

ai-securitydevsecopsllm-securitymcpmodel-context-protocolprompt-injectionpythonsarifsecurity-toolssupply-chain-security

mcp-warden

Quick Install

README Excerpt

Tools (4)

Topics

Related Security Servers