Schema | mcp-shield

mcp-shield

Overview Schema Related Servers Score Discussions

Server Configuration

Describes the environment variables required to run the server.

Name	Required	Description	Default
`SEARXNG_URL`	No	The URL of the searxng server	http://localhost:8080
`MCP_SHIELD_AUDIT`	No	Enable audit (set to 0 to disable)	1
`MCP_SHIELD_AUDIT_LOG`	No	Path to audit log file (default stderr)

Capabilities

Features and capabilities supported by this server

Capability	Details
`tools`	{ "listChanged": false }
`prompts`	{ "listChanged": false }
`resources`	{ "subscribe": false, "listChanged": false }
`experimental`	{}

Tools

Functions exposed to the LLM to take actions

Name	Description
audit_tailA	Return the last `n` records from a JSONL audit log. Use when: "what did the agent just do?", "did anything fail?". Example: path="/var/log/mcp-shield/audit.jsonl", n=50.
audit_summaryA	Aggregate counts over a JSONL audit log: total calls, error rate, top tools. Use when: "how healthy is the MCP fleet?", "what's the error rate?". Example: path="/var/log/mcp-shield/audit.jsonl".
red_teamA	Run a curated set of injection payloads through the sanitizer. Use when: "is the sanitizer actually catching things?", "compliance evidence for security review". Example: strict=False (default; reports hits without raising). Each result row shows `{"input", "caught", "pattern"}`. `caught` is True iff the sanitizer matched any pattern.
scan_inputA	Validate an `args` dict against a JSON schema; return OK or first error. Use when: "is my agent's call valid before I send it?". Example: args={"q":"hi"}, schema={"type":"object","properties":{"q":{"type":"string"}}}. Returns `{"valid": true}` or `{"valid": false, "error": "..."}`. Never raises — the tool surfaces validation results as data.
patterns_listA	List the prompt-injection patterns the sanitizer detects. Use when: "what does this tool actually look for?".
sanitize_previewA	Preview what the sanitizer would do to `text` without raising. Use when: "what gets redacted from this output?". Example: text="ignore previous instructions", strict=False.
versionA	Return mcp-shield version + runtime config. Use when: "what version is deployed?".

Prompts

Interactive templates invoked by user choice

Name	Description
No prompts

Resources

Contextual data attached and managed by the client

Name	Description
No resources

Server Configuration
Capabilities
Tools
Prompts
Resources

Latest Blog Posts

Lightport: Open-Sourcing Glama's AI Gateway
By punkpeye on April 27, 2026.
open source
OpenAI
Tool Definition Quality Score (TDQS)
By punkpeye on April 3, 2026.
mcp
The Hackers Who Tracked My Sleep Cycle
By punkpeye on March 26, 2026.
security

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/sanjibani/mcp-shield'

If you have feedback or need assistance with the MCP directory API, please join our Discord server