Skip to content

v2.2.0 - Advanced Security Modules

Choose a tag to compare

View all tags
@rosschurchill rosschurchill released this 11 Dec 05:56
· 11 commits to main since this release
v2.2.0
15a20f3

Chrome MCP Secure v2.2.0

Advanced Security Modules Release

New Security Features

Module Description
Secrets Scanner Detects 25+ credential patterns (AWS, GitHub, Slack, Stripe, OpenAI, Anthropic keys, private keys, JWTs, credit cards, SSNs)
Response Validator Prompt injection detection (15 patterns), suspicious URL blocking, encoded payload detection
Session Manager Credential session lifecycle with 8h max lifetime and 30min inactivity timeout
MCP Authentication Token-based auth with auto-generation, SHA256 hashing, brute-force lockout
Certificate Pinning SPKI-style pinning for Google, GitHub, Microsoft, Anthropic, OpenAI domains
Screenshot Redaction Auto-redacts password fields, credit cards, CVV, SSN, API keys in screenshots

Installation

git clone https://github.com/Pantheon-Security/chrome-mcp-secure.git
cd chrome-mcp-secure
./setup.sh

What's Changed

  • 6 new security modules totaling 3,000+ lines of security hardening
  • Patterns derived from MEDUSA AI Security Scanner, TruffleHog, and GitLeaks
  • Comprehensive CHANGELOG.md documenting all versions
  • Hashtags for discoverability

Full Changelog

See CHANGELOG.md

#anthropic #mcp #claude #mcp-server #ai-agent #chrome #browser-automation #security #post-quantum #encryption #pantheon-security

Assets 2
Loading