agent-security-scanner-mcp 4.0.0 → 4.1.0

package/code-review-agent/tests/context/security-summary.test.ts

@@ -0,0 +1,181 @@
+import { describe, it, expect } from 'vitest';
+import * as path from 'node:path';
+import {
+  buildRelatedFileSummaries,
+  formatRelatedFileSummaries,
+} from '../../src/context/security-summary.js';
+import type { FileContext } from '../../src/types/analysis.js';
+
+const FIXTURES_DIR = path.resolve(__dirname, '..', 'fixtures', 'guarded-agent');
+
+function makeFileContext(overrides: Partial<FileContext> = {}): FileContext {
+  return {
+    filePath: 'router.py',
+    content: 'from tools.executor import execute_tool\n',
+    language: 'python',
+    lineCount: 5,
+    imports: ['./tools/executor'],
+    importedBy: [],
+    siblingFiles: ['vuln-tool.py', 'tools'],
+    isTestFile: false,
+    isConfigFile: false,
+    isGenerated: false,
+    ...overrides,
+  };
+}
+
+describe('buildRelatedFileSummaries', () => {
+  it('extracts security-relevant lines from imported files', () => {
+    const file = makeFileContext({
+      filePath: 'router.py',
+      imports: ['./tools/executor'],
+    });
+
+    const summaries = buildRelatedFileSummaries(file, FIXTURES_DIR);
+
+    expect(summaries.length).toBeGreaterThan(0);
+    const executorSummary = summaries.find((s) => s.filePath.includes('executor'));
+    expect(executorSummary).toBeDefined();
+    expect(executorSummary!.relationship).toBe('imports');
+    // Should capture subprocess.run line
+    expect(executorSummary!.relevantLines.some((l) => l.includes('subprocess'))).toBe(true);
+  });
+
+  it('includes security-relevant sibling files', () => {
+    const file = makeFileContext({
+      filePath: 'router.py',
+      imports: [],
+      siblingFiles: ['vuln-tool.py', 'guard.py', 'readme.txt'],
+    });
+
+    // guard.py is a security-relevant sibling
+    const summaries = buildRelatedFileSummaries(file, FIXTURES_DIR);
+
+    // May or may not find guard.py depending on whether it exists at the right path
+    // The point is the function doesn't crash and returns valid summaries
+    expect(Array.isArray(summaries)).toBe(true);
+  });
+
+  it('returns empty array when no related files have security-relevant content', () => {
+    const file = makeFileContext({
+      filePath: 'empty.py',
+      imports: [],
+      importedBy: [],
+      siblingFiles: [],
+    });
+
+    const summaries = buildRelatedFileSummaries(file, FIXTURES_DIR);
+    expect(summaries).toEqual([]);
+  });
+
+  it('limits to MAX_RELATED_FILES (4)', () => {
+    const file = makeFileContext({
+      imports: [
+        './tools/executor',
+        './tools/guard',
+        './vuln-tool',
+        './router',
+        './extra1',
+        './extra2',
+      ],
+    });
+
+    const summaries = buildRelatedFileSummaries(file, FIXTURES_DIR);
+    expect(summaries.length).toBeLessThanOrEqual(4);
+  });
+
+  it('resolves Python bare module imports (tools.executor style)', () => {
+    const file = makeFileContext({
+      filePath: 'router.py',
+      imports: ['tools.executor'],  // as buildFileContext would actually produce
+    });
+
+    const summaries = buildRelatedFileSummaries(file, FIXTURES_DIR);
+
+    const executorSummary = summaries.find((s) => s.filePath.includes('executor'));
+    expect(executorSummary).toBeDefined();
+    expect(executorSummary!.relationship).toBe('imports');
+    expect(executorSummary!.relevantLines.some((l) => l.includes('subprocess'))).toBe(true);
+  });
+
+  it('resolves Python single-token imports (import guard style)', () => {
+    const file = makeFileContext({
+      filePath: 'router.py',
+      imports: ['tools.guard'],  // from tools.guard import is_allowed_command
+    });
+
+    const summaries = buildRelatedFileSummaries(file, FIXTURES_DIR);
+
+    const guardSummary = summaries.find((s) => s.filePath.includes('guard'));
+    expect(guardSummary).toBeDefined();
+    expect(guardSummary!.relevantLines.some((l) => /allow/i.test(l))).toBe(true);
+  });
+
+  it('resolves submodule import from file.ts output (from tools import executor)', () => {
+    // file.ts now emits both 'tools' and 'tools.executor' for `from tools import executor`
+    // The resolver should find tools/executor.py via the dotted form
+    const file = makeFileContext({
+      filePath: 'router.py',
+      imports: ['tools', 'tools.executor'],  // as file.ts now produces
+    });
+
+    const summaries = buildRelatedFileSummaries(file, FIXTURES_DIR);
+
+    const executorSummary = summaries.find((s) => s.filePath.includes('executor'));
+    expect(executorSummary).toBeDefined();
+    expect(executorSummary!.relevantLines.some((l) => l.includes('subprocess'))).toBe(true);
+  });
+
+  it('does not inject unrelated package children for bare import', () => {
+    // `from tools import safe_helper` should NOT pull in unrelated executor.py
+    // file.ts emits ['tools', 'tools.safe_helper'] — neither resolves to executor.py
+    const file = makeFileContext({
+      filePath: 'router.py',
+      imports: ['tools', 'tools.safe_helper'],  // safe_helper doesn't exist in fixture
+    });
+
+    const summaries = buildRelatedFileSummaries(file, FIXTURES_DIR);
+
+    // 'tools' alone resolves to nothing (no tools.py, no tools/__init__.py)
+    // 'tools.safe_helper' resolves to nothing (no tools/safe_helper.py)
+    // So no executor.py should appear from the import path
+    const executorFromImport = summaries.find((s) =>
+      s.filePath.includes('executor') && s.relationship === 'imports');
+    expect(executorFromImport).toBeUndefined();
+  });
+
+  it('does not summarize the same file twice across relationships', () => {
+    // If a file is both imported and a sibling, it should appear only once
+    const file = makeFileContext({
+      filePath: 'router.py',
+      imports: ['./tools/executor'],
+      importedBy: [],
+      siblingFiles: ['tools'],  // tools dir is a sibling
+    });
+
+    const summaries = buildRelatedFileSummaries(file, FIXTURES_DIR);
+    const paths = summaries.map((s) => s.filePath);
+    const unique = new Set(paths);
+    expect(paths.length).toBe(unique.size);
+  });
+});
+
+describe('formatRelatedFileSummaries', () => {
+  it('returns empty string for no summaries', () => {
+    expect(formatRelatedFileSummaries([])).toBe('');
+  });
+
+  it('formats summaries with file path, relationship, and lines', () => {
+    const summaries = [
+      {
+        filePath: 'tools/executor.py',
+        relationship: 'imports' as const,
+        relevantLines: ['L9: result = subprocess.run([command, *args], capture_output=True, text=True, shell=False)'],
+      },
+    ];
+
+    const formatted = formatRelatedFileSummaries(summaries);
+    expect(formatted).toContain('tools/executor.py (imports)');
+    expect(formatted).toContain('subprocess.run');
+  });
+});

package/code-review-agent/tests/fixtures/guarded-agent/router.py

@@ -0,0 +1,6 @@
+from tools.executor import execute_tool
+
+def handle_request(action: str, args: list[str]) -> str:
+    if action == "run_command":
+        return execute_tool(args[0], args[1:])
+    return "unknown action"

package/code-review-agent/tests/fixtures/guarded-agent/tools/executor.py

@@ -0,0 +1,10 @@
+import subprocess
+from .guard import is_allowed_command
+
+ALLOWED_COMMANDS = {"ls", "cat", "echo", "date", "whoami"}
+
+def execute_tool(command: str, args: list[str]) -> str:
+    if command not in ALLOWED_COMMANDS:
+        raise ValueError(f"Command not allowed: {command}")
+    result = subprocess.run([command, *args], capture_output=True, text=True, shell=False)
+    return result.stdout

package/code-review-agent/tests/fixtures/guarded-agent/tools/guard.py

@@ -0,0 +1,4 @@
+ALLOWED_COMMANDS = frozenset({"ls", "cat", "echo", "date", "whoami"})
+
+def is_allowed_command(command: str) -> bool:
+    return command in ALLOWED_COMMANDS

package/code-review-agent/tests/fixtures/guarded-agent/vuln-tool.py

@@ -0,0 +1,6 @@
+import requests
+
+def fetch_url(url: str) -> str:
+    """Fetches a URL without any validation - SSRF vulnerability."""
+    response = requests.get(url)
+    return response.text

package/code-review-agent/tests/graph/dependency.test.ts

@@ -119,6 +119,82 @@ describe('DependencyGraphBuilder', () => {
     }
   });
 
+  it('resolves Python bare module imports into the graph', () => {
+    const fixtureDir = path.resolve(__dirname, '../fixtures/guarded-agent');
+    const builder = new DependencyGraphBuilder(fixtureDir);
+    const graph = builder.build(['router.py']);
+
+    // router.py has `from tools.executor import execute_tool`
+    // which should resolve to tools/executor.py
+    const routerNode = graph.nodes.get('router.py');
+    expect(routerNode).toBeTruthy();
+
+    // Check that tools/executor.py is in the graph with a reverse edge
+    const executorKey = Array.from(graph.nodes.keys()).find((k) => k.includes('executor'));
+    expect(executorKey).toBeDefined();
+    const executorNode = graph.nodes.get(executorKey!);
+    expect(executorNode?.importedBy).toContain('router.py');
+  });
+
+  it('resolves Python bare imports from project root for nested files', () => {
+    // Simulate app/router.py importing tools.executor where tools/ is at project root
+    const tmpDir = fs.mkdtempSync(path.join(os.tmpdir(), 'cr-nested-py-'));
+    try {
+      fs.mkdirSync(path.join(tmpDir, 'app'));
+      fs.mkdirSync(path.join(tmpDir, 'tools'));
+      fs.writeFileSync(
+        path.join(tmpDir, 'app', 'router.py'),
+        'from tools.executor import run\n',
+      );
+      fs.writeFileSync(
+        path.join(tmpDir, 'tools', 'executor.py'),
+        'def run(): pass\n',
+      );
+
+      const builder = new DependencyGraphBuilder(tmpDir);
+      const graph = builder.build(['app/router.py']);
+
+      const normalizedKey = Array.from(graph.nodes.keys()).find((k) =>
+        k.replace(/\\/g, '/').includes('tools/executor'));
+      expect(normalizedKey).toBeDefined();
+      const executorNode = graph.nodes.get(normalizedKey!);
+      // Path separators vary by OS — normalize for comparison
+      const importedByNorm = executorNode?.importedBy.map((p) => p.replace(/\\/g, '/'));
+      expect(importedByNorm).toContain('app/router.py');
+    } finally {
+      fs.rmSync(tmpDir, { recursive: true });
+    }
+  });
+
+  it('resolves "from package import submodule" form into the graph', () => {
+    // `from tools import executor` — the graph resolver must emit tools.executor
+    const tmpDir = fs.mkdtempSync(path.join(os.tmpdir(), 'cr-from-import-'));
+    try {
+      fs.mkdirSync(path.join(tmpDir, 'app'));
+      fs.mkdirSync(path.join(tmpDir, 'tools'));
+      fs.writeFileSync(
+        path.join(tmpDir, 'app', 'router.py'),
+        'from tools import executor\n',
+      );
+      fs.writeFileSync(
+        path.join(tmpDir, 'tools', 'executor.py'),
+        'def run(): pass\n',
+      );
+
+      const builder = new DependencyGraphBuilder(tmpDir);
+      const graph = builder.build(['app/router.py']);
+
+      const normalizedKey = Array.from(graph.nodes.keys()).find((k) =>
+        k.replace(/\\/g, '/').includes('tools/executor'));
+      expect(normalizedKey).toBeDefined();
+      const executorNode = graph.nodes.get(normalizedKey!);
+      const importedByNorm = executorNode?.importedBy.map((p) => p.replace(/\\/g, '/'));
+      expect(importedByNorm).toContain('app/router.py');
+    } finally {
+      fs.rmSync(tmpDir, { recursive: true });
+    }
+  });
+
   it('keeps supported non-JS entry files in the graph', () => {
     const tmpDir = fs.mkdtempSync(path.join(os.tmpdir(), 'cr-java-'));
     try {

package/index.js

@@ -47,7 +47,7 @@ try {
 // Create MCP Server
 const server = new McpServer(
   {
-    name: "prooflayer-agent-security",
+    name: "agent-security-scanner-mcp",
     version: _pkgVersion,
   },
   {
@@ -306,7 +306,7 @@ const cliArgs = process.argv.slice(2);
     // CLI mode: scan-prompt <text> [--verbosity minimal|compact|full]
     const text = cliArgs[1];
     if (!text) {
-      console.error('Usage: prooflayer-agent-security scan-prompt <text> [--verbosity minimal|compact|full]');
+      console.error('Usage: agent-security-scanner-mcp scan-prompt <text> [--verbosity minimal|compact|full]');
       process.exit(1);
     }
     const verbosityIdx = cliArgs.indexOf('--verbosity');
@@ -326,7 +326,7 @@ const cliArgs = process.argv.slice(2);
   // CLI mode: scan-security <file> [--verbosity minimal|compact|full] [--format json|sarif]
   const filePath = cliArgs[1];
   if (!filePath) {
-    console.error('Usage: prooflayer-agent-security scan-security <file> [--verbosity minimal|compact|full] [--format json|sarif]');
+    console.error('Usage: agent-security-scanner-mcp scan-security <file> [--verbosity minimal|compact|full] [--format json|sarif]');
     process.exit(1);
   }
   const verbosityIdx = cliArgs.indexOf('--verbosity');
@@ -348,7 +348,7 @@ const cliArgs = process.argv.slice(2);
   const packageName = cliArgs[1];
   const ecosystem = cliArgs[2];
   if (!packageName || !ecosystem) {
-    console.error('Usage: prooflayer-agent-security check-package <name> <ecosystem>');
+    console.error('Usage: agent-security-scanner-mcp check-package <name> <ecosystem>');
     console.error('Ecosystems: npm, pypi, rubygems, crates, dart, perl, raku');
     process.exit(1);
   }
@@ -367,7 +367,7 @@ const cliArgs = process.argv.slice(2);
   const filePath = cliArgs[1];
   const ecosystem = cliArgs[2];
   if (!filePath || !ecosystem) {
-    console.error('Usage: prooflayer-agent-security scan-packages <file> <ecosystem> [--verbosity minimal|compact|full]');
+    console.error('Usage: agent-security-scanner-mcp scan-packages <file> <ecosystem> [--verbosity minimal|compact|full]');
     console.error('Ecosystems: npm, pypi, rubygems, crates, dart, perl, raku');
     process.exit(1);
   }
@@ -387,7 +387,7 @@ const cliArgs = process.argv.slice(2);
   // CLI mode: scan-project <dir> [--recursive] [--diff-only] [--cross-file] [--include '*.py'] [--exclude '*.test.js'] [--verbosity minimal|compact|full]
   const dirPath = cliArgs[1];
   if (!dirPath || dirPath.startsWith('--')) {
-    console.error('Usage: prooflayer-agent-security scan-project <directory> [--recursive] [--diff-only] [--cross-file] [--include <pattern>] [--exclude <pattern>] [--verbosity minimal|compact|full]');
+    console.error('Usage: agent-security-scanner-mcp scan-project <directory> [--recursive] [--diff-only] [--cross-file] [--include <pattern>] [--exclude <pattern>] [--verbosity minimal|compact|full]');
     process.exit(1);
   }
   const verbosityIdx = cliArgs.indexOf('--verbosity');
@@ -455,7 +455,7 @@ const cliArgs = process.argv.slice(2);
   // CLI mode: scan-mcp <path> [--verbosity minimal|compact|full]
   const serverPath = cliArgs[1];
   if (!serverPath) {
-    console.error('Usage: prooflayer-agent-security scan-mcp <server-path> [--verbosity minimal|compact|full]');
+    console.error('Usage: agent-security-scanner-mcp scan-mcp <server-path> [--verbosity minimal|compact|full]');
     process.exit(1);
   }
   const verbosityIdx = cliArgs.indexOf('--verbosity');
@@ -474,7 +474,7 @@ const cliArgs = process.argv.slice(2);
   const actionType = cliArgs[1];
   const actionValue = cliArgs[2];
   if (!actionType || !actionValue) {
-    console.error('Usage: prooflayer-agent-security scan-action <type> <value> [--verbosity minimal|compact|full]');
+    console.error('Usage: agent-security-scanner-mcp scan-action <type> <value> [--verbosity minimal|compact|full]');
     console.error('Types: bash, file_write, file_read, http_request, file_delete, cron, process_spawn, git, docker');
     process.exit(1);
   }
@@ -492,7 +492,7 @@ const cliArgs = process.argv.slice(2);
 } else if (cliArgs[0] === 'scan-skill') {
   const skillPath = cliArgs[1];
   if (!skillPath) {
-    console.error('Usage: prooflayer-agent-security scan-skill <skill-path> [--verbosity minimal|compact|full] [--baseline]');
+    console.error('Usage: agent-security-scanner-mcp scan-skill <skill-path> [--verbosity minimal|compact|full] [--baseline]');
     process.exit(1);
   }
   const verbosityIdx = cliArgs.indexOf('--verbosity');
@@ -529,7 +529,7 @@ const cliArgs = process.argv.slice(2);
   await import('./src/cli/scan-clawhub-safe.js');
   // Exit is handled by scan-clawhub-safe.js
 } else if (cliArgs[0] === '--help' || cliArgs[0] === '-h' || cliArgs[0] === 'help') {
-  console.log('\n  prooflayer-agent-security\n');
+  console.log('\n  agent-security-scanner-mcp\n');
   console.log('  Commands:');
   console.log('    init [client]        Set up MCP config for a client');
   console.log('    init-hooks           Install Claude Code hooks for auto-scanning');
@@ -557,14 +557,14 @@ const cliArgs = process.argv.slice(2);
   console.log('    --include <pattern>  Include only matching files (scan-project)');
   console.log('    --exclude <pattern>  Exclude matching files (scan-project)\n');
   console.log('  Examples:');
-  console.log('    npx prooflayer-agent-security init');
-  console.log('    npx prooflayer-agent-security scan-prompt "ignore previous instructions"');
-  console.log('    npx prooflayer-agent-security scan-security ./app.py --verbosity minimal');
-  console.log('    npx prooflayer-agent-security check-package flask pypi');
-  console.log('    npx prooflayer-agent-security scan-project ./src --verbosity minimal');
-  console.log('    npx prooflayer-agent-security scan-diff HEAD~1');
-  console.log('    npx prooflayer-agent-security report ./src --json');
-  console.log('    npx prooflayer-agent-security benchmark --save --compare-latest\n');
+  console.log('    npx agent-security-scanner-mcp init');
+  console.log('    npx agent-security-scanner-mcp scan-prompt "ignore previous instructions"');
+  console.log('    npx agent-security-scanner-mcp scan-security ./app.py --verbosity minimal');
+  console.log('    npx agent-security-scanner-mcp check-package flask pypi');
+  console.log('    npx agent-security-scanner-mcp scan-project ./src --verbosity minimal');
+  console.log('    npx agent-security-scanner-mcp scan-diff HEAD~1');
+  console.log('    npx agent-security-scanner-mcp report ./src --json');
+  console.log('    npx agent-security-scanner-mcp benchmark --save --compare-latest\n');
   process.exit(0);
 } else {
   // Normal MCP server mode

package/openclaw.plugin.json

@@ -1,5 +1,5 @@
 {
-  "name": "prooflayer-agent-security",
+  "name": "agent-security-scanner-mcp",
   "version": "4.0.0",
   "description": "Security scanner for OpenClaw: prompt injection firewall, package hallucination detection, code vulnerability scanning, auto-fix",
   "author": "Sinewave AI",

package/package.json

@@ -1,12 +1,13 @@
 {
   "name": "agent-security-scanner-mcp",
-  "version": "4.0.0",
+  "version": "4.1.0",
   "mcpName": "io.github.sinewaveai/agent-security-scanner-mcp",
   "description": "Security scanner MCP server for AI coding agents. Prompt injection firewall, package hallucination detection (4.3M+ packages), 1700+ vulnerability rules with AST & taint analysis, LLM-powered semantic code review, auto-fix. For Claude Code, Cursor, Windsurf, Cline, OpenClaw.",
   "main": "index.js",
   "type": "module",
   "bin": {
-    "agent-security-scanner-mcp": "index.js"
+    "agent-security-scanner-mcp": "index.js",
+    "cr-agent": "code-review-agent/dist/bin/cr-agent.js"
   },
   "scripts": {
     "start": "node index.js",

package/scripts/postinstall.js

@@ -1,14 +1,18 @@
 #!/usr/bin/env node
 /**
- * postinstall.js - Attempt to install Python dependencies for tree-sitter AST engine.
- * If installation fails, the scanner gracefully falls back to regex-only mode.
+ * postinstall.js - Setup script for agent-security-scanner-mcp
+ * 1. Install Python dependencies for tree-sitter AST engine (optional)
+ * 2. Install and build code-review-agent dependencies (optional)
  */
-import { execFileSync } from "child_process";
+import { execFileSync, execSync } from "child_process";
 import { join, dirname } from "path";
 import { fileURLToPath } from "url";
+import { existsSync } from "fs";
 
 const __dirname = dirname(fileURLToPath(import.meta.url));
-const requirementsPath = join(__dirname, "..", "requirements.txt");
+const rootDir = join(__dirname, "..");
+const requirementsPath = join(rootDir, "requirements.txt");
+const codeReviewAgentDir = join(rootDir, "code-review-agent");
 
 // Check if Python 3 is available
 function findPython() {
@@ -33,6 +37,7 @@ function isTreeSitterInstalled(pythonCmd) {
   }
 }
 
+// Setup Python dependencies
 const pythonCmd = findPython();
 
 if (!pythonCmd) {
@@ -58,3 +63,37 @@ if (!pythonCmd) {
     );
   }
 }
+
+// Setup code-review-agent (LLM-powered semantic analysis)
+if (existsSync(codeReviewAgentDir)) {
+  const distExists = existsSync(join(codeReviewAgentDir, "dist", "bin", "cr-agent.js"));
+
+  if (distExists) {
+    console.log("[postinstall] code-review-agent already built — cr-agent CLI available.");
+  } else {
+    console.log("[postinstall] Setting up code-review-agent (LLM-powered code review)...");
+    try {
+      // Install dependencies
+      execSync("npm install --omit=dev", {
+        cwd: codeReviewAgentDir,
+        timeout: 180000,
+        stdio: ["pipe", "pipe", "pipe"]
+      });
+
+      // Build TypeScript
+      execSync("npm run build", {
+        cwd: codeReviewAgentDir,
+        timeout: 60000,
+        stdio: ["pipe", "pipe", "pipe"]
+      });
+
+      console.log("[postinstall] code-review-agent installed — run: npx cr-agent --help");
+    } catch (err) {
+      console.log(
+        "[postinstall] Could not set up code-review-agent (optional LLM-powered review).\n" +
+        "             The main scanner still works. To set up manually:\n" +
+        "             cd node_modules/agent-security-scanner-mcp/code-review-agent && npm install && npm run build"
+      );
+    }
+  }
+}

package/server.json

@@ -1,6 +1,6 @@
 {
   "$schema": "https://static.modelcontextprotocol.io/schemas/2025-12-11/server.schema.json",
-  "name": "io.github.sinewaveai/prooflayer-agent-security",
+  "name": "io.github.sinewaveai/agent-security-scanner-mcp",
   "description": "MCP security scanner with prompt injection firewall, package hallucination detection, LLM-powered code review, and auto-fix.",
   "version": "4.0.0",
   "transport": "stdio",

package/src/cli/init-hooks.js

@@ -5,14 +5,14 @@
 import { existsSync, readFileSync, writeFileSync, copyFileSync, mkdirSync } from 'fs';
 import { join } from 'path';
 
-const SCANNER_HOOK_MARKER = 'prooflayer-agent-security';
+const SCANNER_HOOK_MARKER = 'agent-security-scanner-mcp';
 
 function buildHooksConfig(withPromptGuard) {
   const hooks = {
     'post-tool-use': [
       {
         matcher: 'Write|Edit|MultiEdit',
-        command: `npx prooflayer-agent-security scan-security "$TOOL_INPUT_FILE_PATH" --verbosity minimal`,
+        command: `npx agent-security-scanner-mcp scan-security "$TOOL_INPUT_FILE_PATH" --verbosity minimal`,
       },
     ],
   };
@@ -21,7 +21,7 @@ function buildHooksConfig(withPromptGuard) {
     hooks['pre-tool-use'] = [
       {
         matcher: 'Bash',
-        command: `npx prooflayer-agent-security scan-prompt "$TOOL_INPUT_COMMAND" --verbosity minimal`,
+        command: `npx agent-security-scanner-mcp scan-prompt "$TOOL_INPUT_COMMAND" --verbosity minimal`,
       },
     ];
   }

package/src/cli/init.js

@@ -7,7 +7,7 @@ import { createInterface } from "readline";
 
 const MCP_SERVER_ENTRY = {
   command: "npx",
-  args: ["-y", "prooflayer-agent-security"]
+  args: ["-y", "agent-security-scanner-mcp"]
 };
 
 function vscodeBase() {