MCP.so
Sign In

Armor

@studiomeyer-io

About Armor

Drop-in Rust sidecar for MCP servers — scans tool calls for prompt injection, validates Ed25519 manifest signatures, blocks marketplace-poisoning vectors. <5ms p99 overhead. Defense against OX Security MCP advisory (10+ CVEs, April 2026).

Basic information

License

MIT

Runtime

rust

Publisher

studiomeyer-io

Submitted by

Matthias Meyer - StudioMeyer

Config

No standard config provided

This server doesn't expose a parseable MCP config block in its README. See the repository for install instructions.

Repository

Tools

No tools detected

We auto-extract tools from the README. The maintainer can list them under a ## Tools heading to populate this section.

Overview

What is Armor?

Drop-in Rust sidecar for MCP servers — scans tool calls for prompt injection, validates Ed25519 manifest signatures, blocks marketplace-poisoning vectors. <5ms p99 overhead. Defense against OX Security MCP advisory (10+ CVEs, April 2026).

How to use Armor?

The README includes setup instructions such as mcp-armor wrap -- npx -y @modelcontextprotocol/server-filesystem /tmp.

Key features of Armor

  • off — disabled
  • Dynamic linker: LD_PRELOAD, LD_LIBRARY_PATH, DYLD_INSERT_LIBRARIES, DYLD_LIBRARY_PATH
  • Language runtime: NODE_OPTIONS, PYTHONPATH, JAVA_TOOL_OPTIONS
  • mcp-armor (this one) — runtime defense sidecar: scans tool calls, verifies signed manifests, blocks known-bad CVEs
  • mcp-herald — static migration linter for the MCP 2026-07-28 spec

Use cases of Armor

  • Connect an MCP-compatible client to this repository's service.
  • Review the README-backed setup before enabling it in production.

FAQ from Armor

Where is the source code for Armor?

The source code is linked from the repository URL on this page.

Does Armor include a standard MCP config?

If the README contains a parseable MCP configuration block, it is shown in the Config tab.

Comments

More MCP servers