GuardRail MCP v2.0 (Enterprise)
GuardRail MCP v2.0 is a hybrid multi-language security analysis server for scanning source code, infrastructure-as-code, dependencies, and containers for secrets, vulnerabilities, and misconfigurations — with enterprise features like RBAC, policy gates, and audit logging.
Core Security Scanning
audit_code_safety– Multi-engine scan (secrets regex, Python AST + taint, tree-sitter, custom rules) returning redacted issues, risk scores, and verdictsaudit_infra_security– IaC misconfiguration detection with optional budget gate on estimated monthly cloud spendaudit_container_config– Security heuristics for Dockerfile/Kubernetes configsaudit_cloud_cost– Rough AWS/GCP monthly cost estimates from IaC text
Repository & Git Scanning
scan_repository– Recursive parallel repo scan with optional incremental caching (up to 2000 files)scan_git_diff– Scan only files changed in a git range or staged changes
Dependency & Supply Chain
scan_dependencies– Dependency inventory with optional OSV CVE queries,pip audit, ornpm auditgenerate_sbom– Generate CycloneDX and/or SPDX SBOM JSON
Reporting & Export
export_sarif– Convert findings to SARIF 2.1.0 JSONsuggest_fixes– Template or LLM-assisted fix drafts (never auto-applied)security_score– Compute a security score/grade from an issues list with optional history recordingcompliance_report– Generate lightweight compliance evidence reports for auditorsfull_pipeline– Combined repo/diff scan + dependency check + fix suggestions + SARIF + SBOM in one call
Engine & Plugin Management
engine_status– Report hybrid engine capabilities (supported languages, active plugins)list_plugins– List loaded plugins and custom rule counts
History & Dashboard
scan_history– Retrieve recent scan history from local SQLite storage
Enterprise Features
enterprise_health– Check health, metrics, and non-secret config statusenterprise_policy_status– View active policy packs and gate thresholds for the calling tenantevaluate_policy– Run a policy pack evaluation against a prior scan resultlist_audit_events– List recent in-memory audit events (operator+ role required)issue_access_token– Issue short-lived JWTs for RBAC roles (admin only)reload_enterprise_config– Reload enterprise YAML/JSON config from disk (admin)manage_tenant– Inspect or update in-memory tenant quota counters (admin)
Provides tools for auditing container configurations and security checks for Docker and Kubernetes deployments.
Allows scanning of git diffs and repositories for security vulnerabilities.
Integrates with GitHub code scanning by uploading SARIF results and can be run in GitHub Actions CI.
Exposes metrics in Prometheus format for monitoring the MCP server.
Click on "Install Server".
Wait a few minutes for the server to deploy. Once ready, it will show a "Started" state.
In the chat, type
@followed by the MCP server name and your instructions, e.g., "@GuardRail MCP v2.0 (Enterprise)scan my repository for security vulnerabilities and generate SARIF report"
That's it! The server will respond to your query, and you can continue using it as needed.
Here is a step-by-step guide with screenshots.
GuardRail MCP
Hybrid multi-language security analysis over MCP for AI-assisted development workflows.
GuardRail exposes tools that scan source and infrastructure text for high-signal issues (secrets, dangerous APIs, injection patterns, IaC misconfigurations), with optional tree-sitter structural checks, dependency inventory/OSV, SARIF/SBOM export, and an enterprise policy gateway.
Resource | URL |
Website | |
MCPize listing | |
Accuracy policy | |
Security / threat model | |
Examples | |
Performance | |
Test results | |
Enterprise |
Scope (read this)
Does: static analysis of text you provide; redacts many secret-shaped substrings in excerpts.
Does not: execute scanned code; replace commercial SAST/DAST; guarantee zero false positives/negatives; provide SOC2 certification by itself.
Website playground: browser-only demonstration (
docs/ACCURACY.md). Production use = Python MCP/CLI.
Related MCP server: Spotter-SAST
Quick start
git clone https://github.com/SECRET4422/guardrail-mcp.git
cd guardrail-mcp
pip install -r requirements.txt
export PYTHONPATH=$PWD
python -m unittest discover -s tests -v
python -m guardrail --mode stdioMCP client configuration
{
"mcpServers": {
"guardrail": {
"command": "python",
"args": ["-m", "guardrail", "--mode", "stdio"],
"cwd": "/absolute/path/to/guardrail-mcp",
"env": { "PYTHONPATH": "/absolute/path/to/guardrail-mcp" }
}
}
}CLI scan (ground truth)
python - <<'PY'
from pathlib import Path
from guardrail.hybrid_scan import hybrid_scan
r = hybrid_scan(
Path("examples/vulnerable_sample.py").read_text(encoding="utf-8"),
filename="examples/vulnerable_sample.py",
)
print(r["status"], r["security_verdict"], r["issue_count"], r.get("engines"))
PYexamples/ contains intentional insecure fixtures for tests and demos only (labeled in-file). Values are synthetic.
Capabilities
Area | Implementation |
Secrets / high-signal patterns |
|
Python AST + multi-hop taint |
|
Tree-sitter (optional grammars) |
|
Repo / git-diff scan |
|
Dependencies / OSV |
|
SARIF / SBOM |
|
Enterprise auth, RBAC, policy |
|
Custom rules / plugins |
|
Tests
PYTHONPATH=$PWD python -m unittest discover -s tests -vPublished summary: docs/test-results.md (reproduce with the command above).
Performance
Indicative micro-benchmarks are in docs/PERFORMANCE.md and benchmarks/. Re-run on your machine before relying on numbers.
Enterprise mode
Optional multi-tenant gateway (API keys/JWT, RBAC, path sandbox, audit, rate limits). See docs/ENTERPRISE.md. Do not deploy HTTP enterprise mode without authentication.
Hosted listing
Optional commercial listing: mcpize.com/mcp/guardrail.
Self-hosting the MIT core remains free. Pricing on MCPize is set in that marketplace dashboard.
Security
Threat model: docs/SECURITY_MODEL.md
Vulnerability reporting: SECURITY.md
Claims policy: docs/ACCURACY.md
License
MIT — LICENSE.
Maintenance
Resources
Unclaimed servers have limited discoverability.
Looking for Admin?
If you are the server author, to access and configure the admin panel.
Latest Blog Posts
- Your AI Chatbot Just Exposed Your CEO's Salary to an InternBy Om-Shree-0709 on .Agent IdentityMCP SecurityOAuth Delegation
- Why MCP Servers Need Execution Sandboxing (And Why Your Current Stack Isn't Enough)By Om-Shree-0709 on .Agentic AiPrompt InjectionWebAssembly
MCP directory API
We provide all the information about MCP servers via our MCP API.
curl -X GET 'https://glama.ai/api/mcp/v1/servers/SECRET4422/guardrail-mcp'
If you have feedback or need assistance with the MCP directory API, please join our Discord server