MCP.so
登录
S

ShieldAPI MCP (shieldapi-mcp)

@alberthild

关于 ShieldAPI MCP (shieldapi-mcp)

MCP server providing 9 security intelligence tools for AI agents. Real-time threat detection with pay-per-request USDC micropayments via x402 protocol. Free tier included (3 calls/day, no account needed).

基本信息

分类

开发工具

传输方式

stdio

发布者

alberthild

提交者

Albert Hild

配置

使用下面的配置,将此服务器添加到你的 MCP 客户端。

{
  "mcpServers": {
    "shieldapi": {
      "command": "npx",
      "args": [
        "-y",
        "shieldapi-mcp"
      ],
      "env": {
        "SHIELDAPI_WALLET_PRIVATE_KEY": "0x..."
      }
    }
  }
}

工具

9

SHA-1 hash against 900M+ breached passwords (HIBP)

k-Anonymity password range lookup

Email breach exposure via HIBP

DNS, SPF/DMARC, SSL, blacklist reputation

Blacklists, Tor exit detection, reverse DNS

Phishing, malware, brand impersonation

All checks combined in one call

Prompt injection detection — 200+ patterns, <100ms

AI skill/plugin supply chain scanner — 8 risk categories

概览

What is Shieldapi Mcp?

Shieldapi Mcp provides 9 security tools via the Model Context Protocol, including password breach checks, prompt injection detection, and domain/IP reputation lookups. It is designed for AI agents and developers who need real‑time security intelligence, and all tools work immediately in a free demo mode without any API key or wallet.

How to use Shieldapi Mcp?

Run npx shieldapi-mcp to start the MCP server. All tools are available in demo mode out of the box; to use paid mode, add a wallet for x402 USDC micropayments on Base.

Key features of Shieldapi Mcp

  • Check passwords against 900M+ breached hashes (HIBP)
  • Prompt injection detection with 200+ patterns under 100ms
  • AI skill/plugin supply chain scanner with 8 risk categories
  • Pay-per-request USDC micropayments via x402 on Base
  • No API key required; works instantly in demo mode
  • Includes email, domain, IP, and URL reputation checks

Use cases of Shieldapi Mcp

  • Securing AI agents against prompt injection and jailbreak attacks
  • Auditing AI plugins and skills for malicious code or credential leaks
  • Verifying user passwords and emails against real breach databases
  • Checking domain, IP, and URL reputation for phishing or malware
  • Performing a combined full security scan in a single API call

FAQ from Shieldapi Mcp

What is the pricing model?

Each tool has a fixed per‑request price in USDC (e.g., check_password $0.001, check_prompt $0.005). A free demo mode is available with no payment required.

Do I need an API key or wallet to start?

No. The server works out of the box in demo mode without any API key or wallet. For paid mode you add a wallet for x402 USDC micropayments on Base.

What data sources does Shieldapi Mcp use?

It uses Have I Been Pwned (HIBP) for password and email breaches, DNS/SPF/DMARC/SSL data for domains, and blacklists, Tor exit detection, and reverse DNS for IPs. The skill scanner is based on the Snyk ToxicSkills taxonomy.

How comprehensive is the prompt injection detection?

It covers 200+ patterns including Base64, ROT13, Unicode homoglyphs, DAN/jailbreak prompts, and exfiltration attempts.

Is there a combined scan tool?

Yes, the full_scan tool runs all checks in one call for $0.010 per request.

评论

开发工具 分类下的更多 MCP 服务器