@aiclude/mcp-guard 0.2.2 → 0.2.3

package/README.md

@@ -19,7 +19,7 @@ In 2026, **MCP (Model Context Protocol)** has become the de facto standard for A
 - **92% exploit probability** with just 10 MCP plugins installed ([VentureBeat](https://venturebeat.com))
 - **OWASP MCP Top 10** published — Tool Poisoning, Prompt Injection, Context Spoofing confirmed as real attack vectors
 
-Existing security tools (WAF, SAST, DAST) don't operate at the MCP protocol level. Attacks happening inside **JSON-RPC message streams** over stdio pipes or SSE are invisible to traditional security tools.
+Existing security tools (WAF, SAST, DAST) don't understand MCP protocol semantics. A WAF can see HTTP requests, but it cannot detect MCP-specific attacks like zero-width character hiding in tool descriptions, tool name spoofing, or prompt injection embedded in tool definitions. In stdio mode, traffic doesn't even use HTTP — it's completely off the radar.
 
 > **MCP Guard** inspects all messages in real-time and **blocks dangerous tool calls before they reach the server**.
 
@@ -75,6 +75,25 @@ Add to `.cursor/mcp.json`:
 }
 ```
 
+### Claude Code (CLI) Integration
+
+```bash
+claude mcp add my-server-guarded -- npx -y @aiclude/mcp-guard -- npx -y @some/mcp-server
+```
+
+Or edit `~/.claude/claude_code_config.json` directly:
+
+```json
+{
+  "mcpServers": {
+    "fetch-guarded": {
+      "command": "npx",
+      "args": ["-y", "@aiclude/mcp-guard", "--", "npx", "-y", "@modelcontextprotocol/server-fetch"]
+    }
+  }
+}
+```
+
 ---
 
 ## Key Features

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@aiclude/mcp-guard",
-  "version": "0.2.2",
+  "version": "0.2.3",
   "description": "MCP runtime security proxy — intercepts and enforces security policies on MCP tool calls",
   "type": "module",
   "main": "./dist/index.js",