12 #prompt-injection MCP Servers & Clients
Every MCP server and client below is tagged #prompt-injection — install one to give Claude, Cursor, VS Code, or any other MCP-compatible client access to prompt-injection tools.
すべて
nexus-mcp — jpi-guard & PII Guard
nexus-api-lab
Japanese LLM security APIs — prompt injection detection (jpi-guard) + PII masking (PII Guard). Free to start, no credit card required.
Agent Immune
denial-web
Adaptive security toolkit for AI agents. Assess inputs for prompt injection, scan outputs for credential/PII leaks, teach new attack patterns to semantic memory, harden prompts with role-lock and sandboxing, and monitor metrics — all locally via MCP. Zero false positives on bench
VerityLayer
meloliva14
VerityLayer — fail-closed verify-before-you-act trust gate for AI agents. 5 tools: verify_fact, detect_injection, moderate_content, redact_pii, guard_action. Keyless, pay-per-call via x402 (USDC on Base); every verdict ships an Ed25519-signed receipt. Run: npx -y @veritylayer/mcp
Agent Skill Scanner
rexcoleman
Scan OpenClaw SKILL.md and MCP tool definition files for security vulnerabilities. 22 rules across prompt injection, capability escalation, data exfiltration, encoded payloads, and composition risks. The only scanner targeting agent skill file formats.
Brackoracle
brack-6
Runtime security oracle for AI agents — scan prompts, tool calls, and outputs before execution. Pay-per-call via x402/USDC, no accounts needed.
Heimdall — Mcp Security Scanner
caglarbozkurt
Security scanner for MCP servers — vet an MCP before you wire it into an agent. Detects prompt-injection, credential exfiltration (via taint analysis), RCE, and supply-chain risks, and catches cross-server exfil chains no single server reveals. Zero-dependency local CLI, SARIF ou
ShieldAPI MCP (shieldapi-mcp)
alberthild
MCP server providing 9 security intelligence tools for AI agents. Real-time threat detection with pay-per-request USDC micropayments via x402 protocol. Free tier included (3 calls/day, no account needed).
Trust Gate MCP — First post-quantum MCP server. Policy-gated AI agent decisions with hybrid Ed25519 + ML-DSA-65 (NIST FIPS 204) cryptographic receipts. No Receipt. No Trust.
Cyber-Warrior-Network
The first production MCP server with NIST FIPS 204 post-quantum receipts. Every AI agent tool call is policy-gated, hybrid-signed (Ed25519 + ML-DSA-65), and forensically provable — offline, forever. Fail-closed architecture: if the Trust Gate backend is unreachable, every decisio
Zentric Protocol
ZentricProtocol
Prompt injection and PII detection MCP server for AI agents. Deterministic, sub-25ms. Returns CLEARED/ANONYMIZED/BLOCKED verdict with matched signatures, PII entities, and GDPR Art.30 audit report. 2,000 free requests/month.
Middlebrick
middleBrick
Scan APIs for security vulnerabilities and get OWASP risk scores. Detects auth bypass, BOLA/IDOR, data exposure, prompt injection, and 12+ security categories.
Tooltrust Scanner
AgentSafe-AI
Scan MCP servers for security risks before your AI agent trusts them. Detects prompt injection, supply chain attacks (including the LiteLLM 1.82.7/1.82.8 backdoor), excessive permissions, arbitrary code execution, typosquatting, and tool shadowing. Add to your .mcp.json and let y
Silentfail
decksaga
Diagnose MCP servers — health checks, tool testing, token cost audits, conflict detection, and security scanning with 50+ prompt injection patterns. Works as CLI or MCP server inside Claude Desktop.
Frequently asked questions
What is a #prompt-injection MCP server?
- An MCP server tagged #prompt-injection implements the Model Context Protocol so AI assistants like Claude, Cursor, and VS Code can access prompt-injection-related tools, data, or APIs.
How many #prompt-injection MCP servers and clients are there?
- mcp.so currently lists 12 MCP servers and clients tagged #prompt-injection.
How do I install a #prompt-injection MCP server?
- Open any server below and copy its install snippet into Claude Desktop, Cursor, VS Code, or another MCP client's configuration — remote servers need no separate download.