Skip to main content
Glama
crunchtools

io.github.crunchtools/airlock

Official
by crunchtools

quarantine_scan_tool

Scan URLs or file paths for injection vectors before opening. Receive threat assessment, risk level, and detection counts without exposing content.

Instructions

Pre-flight security scan: detect injection vectors WITHOUT returning content.

Provide either url or path (not both). Returns threat assessment with risk level, vector counts, and Q-Agent observations. Always runs full detection regardless of trust level.

Input Schema

TableJSON Schema
NameRequiredDescriptionDefault
urlNoURL to scan (optional)
pathNoFile path to scan (optional)

Output Schema

TableJSON Schema
NameRequiredDescriptionDefault

No arguments

Behavior4/5

Does the description disclose side effects, auth requirements, rate limits, or destructive behavior?

With no annotations, the description fully carries the transparency burden. It discloses that it does not return content, returns a threat assessment with risk level, vector counts, and Q-Agent observations, and always runs full detection. This is transparent, though it could mention if any state is modified or if authentication is required.

Agents need to know what a tool does to the world before calling it. Descriptions should go beyond structured annotations to explain consequences.

Conciseness5/5

Is the description appropriately sized, front-loaded, and free of redundancy?

The description is three sentences, no redundant words, and front-loads the purpose. Every sentence adds essential information: purpose, input constraint, output summary, and behavioral note.

Shorter descriptions cost fewer tokens and are easier for agents to parse. Every sentence should earn its place.

Completeness5/5

Given the tool's complexity, does the description cover enough for an agent to succeed on first attempt?

Given the simple 2-parameter schema with no required fields and the existence of an output schema, the description covers the tool's role (pre-flight scan), constraints, and return structure sufficiently. No critical gaps are apparent.

Complex tools with many parameters or behaviors need more documentation. Simple tools need less. This dimension scales expectations accordingly.

Parameters4/5

Does the description clarify parameter syntax, constraints, interactions, or defaults beyond what the schema provides?

The input schema has 100% description coverage, but the tool description adds the crucial constraint 'Provide either url or path (not both),' which is not in the schema. This adds meaningful behavioral semantics beyond the parameter descriptions.

Input schemas describe structure but not intent. Descriptions should explain non-obvious parameter relationships and valid value ranges.

Purpose5/5

Does the description clearly state what the tool does and how it differs from similar tools?

The description clearly states it is a 'Pre-flight security scan' that detects injection vectors without returning content. The verb 'scan' and resources 'URL or path' are explicit, and the phrase 'without returning content' distinguishes it from siblings like scan_content_tool that may return scanned content.

Agents choose between tools based on descriptions. A clear purpose with a specific verb and resource helps agents select the right tool.

Usage Guidelines4/5

Does the description explain when to use this tool, when not to, or what alternatives exist?

The description gives explicit guidance: 'Provide either url or path (not both).' It also states it 'Always runs full detection regardless of trust level,' providing context for when it runs. However, it does not explicitly name alternative tools or scenarios when not to use it, leaving some inference required.

Agents often have multiple tools that could apply. Explicit usage guidance like "use X instead of Y when Z" prevents misuse.

Install Server

Other Tools

Latest Blog Posts

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/crunchtools/mcp-trentina'

If you have feedback or need assistance with the MCP directory API, please join our Discord server