@agent-wall/cli
Advanced tools
Security firewall for AI agents — intercept MCP tool calls, enforce policies, block attacks
Security firewall for AI agents. Intercepts MCP tool calls, enforces policies, blocks attacks.
"Cloudflare for AI agents" — Zero-config protection for any MCP server.
npm install -g @agent-wall/cli
# Generate a starter policy
agent-wall init
# Wrap any MCP server
agent-wall wrap -- npx @modelcontextprotocol/server-filesystem /home/user
# With real-time dashboard
agent-wall wrap --dashboard -- npx mcp-server
Replace your MCP config entry:
{
"mcpServers": {
"filesystem": {
"command": "agent-wall",
"args": ["wrap", "--", "npx", "@modelcontextprotocol/server-filesystem", "/home/user"]
}
}
}
Works with Claude Code, Cursor, Claude Desktop, VS Code, Windsurf, and any MCP client.
Every tool call runs through a 5-step inbound pipeline:
1. Kill Switch — Emergency deny-all
2. Injection — 30+ prompt injection patterns
3. Egress Control — Block SSRF, private IPs, metadata endpoints
4. Policy Engine — YAML rules (first-match-wins, glob, rate limiting)
5. Chain Detection — Suspicious multi-step patterns
Plus an outbound response scanner — 14 secret patterns, 5 PII patterns, custom regex.
| Command | Description |
|---|---|
agent-wall wrap | Wrap an MCP server with policy enforcement |
agent-wall init | Generate a starter config |
agent-wall test | Dry-run a tool call against your policy |
agent-wall audit | View and analyze audit logs |
agent-wall scan | Scan MCP config for security risks |
agent-wall validate | Validate policy configuration |
agent-wall doctor | Health check for config and environment |
Full docs: agent-wall.github.io/agent-wall
FAQs
Security firewall for AI agents — intercept MCP tool calls, enforce policies, block attacks
The npm package @agent-wall/cli receives a total of 9 weekly downloads. As such, @agent-wall/cli popularity was classified as not popular.
We found that @agent-wall/cli demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Multiple high-impact npm maintainers confirm they have been targeted in the same social engineering campaign that compromised Axios.
Security News
Axios compromise traced to social engineering, showing how attacks on maintainers can bypass controls and expose the broader software supply chain.
Security News
Node.js has paused its bug bounty program after funding ended, removing payouts for vulnerability reports but keeping its security process unchanged.