Free AI agent security scanner. Part of the MoltCops defense ecosystem.
# Install dependencies
npm install
# Run development server
npm run dev
# Open http://localhost:3000Or manually:
npm install -g vercel
vercel- π Free Scanner β 20-rule security engine, runs client-side
- π‘οΈ Badge Application β Founding Operative NFT application flow
- π« Waitlist β $MCOP token waitlist with referral mechanics
scanner-app/
βββ src/
β βββ app/
β β βββ layout.tsx # Root layout + metadata
β β βββ page.tsx # Main page (tabs)
β β βββ globals.css # Global styles
β βββ components/
β β βββ Scanner.tsx # MoltShield scanner
β β βββ BadgeApplication.tsx # Founding Operative form
β β βββ Waitlist.tsx # Token waitlist + referral
β βββ lib/
β βββ scan-engine.ts # 20-rule detection engine
βββ package.json
βββ next.config.js
Add MoltCops to your CI pipeline β scans every PR for agent vulnerabilities:
# .github/workflows/moltcops-scan.yml
name: MoltCops Security Scan
on:
pull_request:
paths: ['**/*.ts', '**/*.js', '**/*.py', '**/*.md']
permissions:
contents: read
pull-requests: write
jobs:
scan:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- uses: Adamthompson33/moltshield@main
with:
github-token: ${{ secrets.GITHUB_TOKEN }}
# api-key: ${{ secrets.MOLTCOPS_PRO_KEY }} # Optional: Pro tier
# fail-on: CRITICAL # Optional: block PRs with critical findingsFree tier: 10 rules β catches drains, sleepers, prompt injection, code injection, exfil. Pro tier: 20 rules β adds jailbreak, encoding tricks, context poisoning, sandbox escape, and more.
- CRITICAL β Key export, drain patterns, unlimited approvals, sleeper triggers
- HIGH β Prompt injection, safety removal
- MEDIUM β Data exfil, stealth operations, code injection
- LOW β Hardcoded addresses
- CRITICAL β MAX_UINT256 detection
- HIGH β Identity spoofing, authority bypass, jailbreaks, encoding tricks, false authority
- MEDIUM β Context poisoning, sandbox escape, time/count triggers, config exposure
Pro tier available via API key ($5/month).
To Protect and Serve (Humanity) π¨