Defense-in-depth for MCP stdio servers: shell-injection guard, AST audit CLI, RCE blocking.
Defense-in-depth bundle for MCP stdio servers. Wraps with allowlist + sandbox + replay-detection, plus an AST audit CLI () that scans MCP server sources for unsanitized shell calls. Closes the Ox-Security MCP stdio-RCE class (200k vulnerable servers, May 2026 disclosure). Author: Matthias Meyer (StudioMeyer) Or run the audit CLI directly without installing: Three layers, opt-in piecewise: 1.…
Verification confirms publisher identity (repo ownership), not code safety. The security scan covers known CVEs and suspicious install scripts — it cannot prove the absence of malicious code.
Defense-in-depth bundle for MCP stdio servers. Wraps with allowlist + sandbox + replay-detection, plus an AST audit CLI () that scans MCP server sources for unsanitized shell calls. Closes the Ox-Security MCP stdio-RCE class (200k vulnerable servers, May 2026 disclosure). Author: Matthias Meyer (StudioMeyer) Or run the audit CLI directly without installing: Three layers, opt-in piecewise: 1. Library API — drop-in / you call from your own MCP server. Default-deny allowlist, sandbox profiles,…