agentaudit 3.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (6) hide show
  1. package/LICENSE +34 -0
  2. package/README.md +209 -0
  3. package/cli.mjs +693 -0
  4. package/index.mjs +383 -0
  5. package/package.json +45 -0
  6. package/prompts/audit-prompt.md +663 -0
package/LICENSE ADDED
@@ -0,0 +1,34 @@
1
+ GNU AFFERO GENERAL PUBLIC LICENSE
2
+ Version 3, 19 November 2007
3
+
4
+ Copyright (c) 2026 AgentAudit Contributors
5
+
6
+ This program is free software: you can redistribute it and/or modify
7
+ it under the terms of the GNU Affero General Public License as published
8
+ by the Free Software Foundation, either version 3 of the License, or
9
+ (at your option) any later version.
10
+
11
+ This program is distributed in the hope that it will be useful,
12
+ but WITHOUT ANY WARRANTY; without even the implied warranty of
13
+ MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14
+ GNU Affero General Public License for more details.
15
+
16
+ You should have received a copy of the GNU Affero General Public License
17
+ along with this program. If not, see <https://www.gnu.org/licenses/>.
18
+
19
+ ---
20
+
21
+ COMMERCIAL LICENSE
22
+
23
+ For commercial use without AGPL obligations (e.g., proprietary integrations,
24
+ SaaS offerings, or enterprise deployments), a commercial license is available.
25
+
26
+ Contact: https://github.com/starbuck100/agentaudit-web/issues
27
+
28
+ ---
29
+
30
+ ADDITIONAL TERMS
31
+
32
+ The AgentAudit Trust Registry at agentaudit.dev is a hosted service and is
33
+ NOT covered by this license. Access to the registry API is governed by
34
+ the AgentAudit Terms of Service at https://agentaudit.dev/terms.
package/README.md ADDED
@@ -0,0 +1,209 @@
1
+ <div align="center">
2
+
3
+ # 🛡️ AgentAudit
4
+
5
+ **Security scanner for AI packages**
6
+
7
+ Scan MCP servers, agent skills, and AI tools for vulnerabilities — from the terminal or via MCP.
8
+
9
+ [![npm](https://img.shields.io/npm/v/agentaudit?style=flat-square&color=00C853)](https://www.npmjs.com/package/agentaudit)
10
+ [![Trust Registry](https://img.shields.io/badge/Registry-agentaudit.dev-00C853?style=flat-square)](https://agentaudit.dev)
11
+ [![License](https://img.shields.io/badge/License-AGPL_3.0-F9A825?style=flat-square)](LICENSE)
12
+
13
+ </div>
14
+
15
+ ---
16
+
17
+ ## Quick Start
18
+
19
+ ```bash
20
+ # Install globally
21
+ npm install -g agentaudit
22
+
23
+ # Setup (register + get API key — free, one-time)
24
+ agentaudit setup
25
+
26
+ # Scan a repo
27
+ agentaudit scan https://github.com/owner/repo
28
+
29
+ # Scan multiple repos
30
+ agentaudit scan repo1 repo2 repo3
31
+
32
+ # Check if a package has been audited
33
+ agentaudit check fastmcp
34
+ ```
35
+
36
+ Or run without installing:
37
+
38
+ ```bash
39
+ npx agentaudit scan https://github.com/owner/repo
40
+ ```
41
+
42
+ ## What it does
43
+
44
+ ```
45
+ ◉ google-workspace-mcp https://github.com/taylorwilsdon/google_workspace_mcp
46
+ │ Python mcp-server 31 files scanned in 1.0s
47
+
48
+ ├── tool drive_service ✔ ok
49
+ ├── tool docs_service ✔ ok
50
+ ├── tool start_google_auth ✔ ok
51
+ └── tool set_enabled_tools ✔ ok
52
+
53
+ │ Findings (2) static analysis — may include false positives
54
+ ├── ● MEDIUM Potential hardcoded secret
55
+ │ .env.oauth21:9 SECRET="your-google-client-secret"
56
+ └── ● MEDIUM Potential path traversal
57
+ auth/credential_store.py:123
58
+
59
+ └── registry LOW Risk 10 https://agentaudit.dev/skills/google-workspace-mcp
60
+ ```
61
+
62
+ **Detects:**
63
+ - 🔴 Prompt injection & tool poisoning
64
+ - 🔴 Shell command injection
65
+ - 🔴 SQL injection
66
+ - 🟡 Hardcoded secrets
67
+ - 🟡 SSL/TLS verification disabled
68
+ - 🟡 Path traversal
69
+ - 🟡 Unsafe YAML/pickle deserialization
70
+ - 🔵 Wildcard CORS
71
+ - 🔵 Undisclosed telemetry
72
+
73
+ **Plus** registry lookup — shows if a package has already been officially audited on [agentaudit.dev](https://agentaudit.dev).
74
+
75
+ ---
76
+
77
+ ## MCP Server
78
+
79
+ Use AgentAudit as an MCP server in Claude Desktop, Cursor, Windsurf, or any MCP client. Your AI agent gets three tools:
80
+
81
+ | Tool | Description |
82
+ |------|-------------|
83
+ | `audit_package` | Clone a repo, return source code + audit prompt for deep LLM analysis |
84
+ | `submit_report` | Upload completed audit report to [agentaudit.dev](https://agentaudit.dev) |
85
+ | `check_package` | Look up a package in the registry |
86
+
87
+ ### Claude Desktop / Claude Code
88
+
89
+ `~/.claude/mcp.json`:
90
+ ```json
91
+ {
92
+ "mcpServers": {
93
+ "agentaudit": {
94
+ "command": "npx",
95
+ "args": ["-y", "agentaudit"]
96
+ }
97
+ }
98
+ }
99
+ ```
100
+
101
+ ### Cursor
102
+
103
+ `.cursor/mcp.json`:
104
+ ```json
105
+ {
106
+ "mcpServers": {
107
+ "agentaudit": {
108
+ "command": "npx",
109
+ "args": ["-y", "agentaudit"]
110
+ }
111
+ }
112
+ }
113
+ ```
114
+
115
+ ### Windsurf
116
+
117
+ `~/.codeium/windsurf/mcp_config.json`:
118
+ ```json
119
+ {
120
+ "mcpServers": {
121
+ "agentaudit": {
122
+ "command": "npx",
123
+ "args": ["-y", "agentaudit"]
124
+ }
125
+ }
126
+ }
127
+ ```
128
+
129
+ > **That's it.** No manual clone, no path config. `npx` handles everything.
130
+
131
+ ### How the MCP audit works
132
+
133
+ ```
134
+ Agent calls audit_package("https://github.com/owner/repo")
135
+
136
+ MCP Server clones repo, collects source files (max 300KB)
137
+
138
+ Returns source code + 3-pass audit methodology
139
+
140
+ Agent's LLM analyzes code (UNDERSTAND → DETECT → CLASSIFY)
141
+
142
+ Agent calls submit_report(findings)
143
+
144
+ Report published at agentaudit.dev/skills/{slug}
145
+ ```
146
+
147
+ ---
148
+
149
+ ## Setup & Authentication
150
+
151
+ ```bash
152
+ agentaudit setup
153
+ ```
154
+
155
+ Interactive wizard — choose:
156
+ 1. **Register new agent** (free) → API key created automatically
157
+ 2. **Enter existing API key** → if you already have one
158
+
159
+ Credentials are stored in `~/.config/agentaudit/credentials.json` (survives reinstalls).
160
+
161
+ The MCP server finds credentials automatically from:
162
+ 1. `AGENTAUDIT_API_KEY` environment variable
163
+ 2. `~/.config/agentaudit/credentials.json`
164
+
165
+ **Scanning and checking work without a key.** Only submitting reports requires authentication.
166
+
167
+ ---
168
+
169
+ ## CLI Reference
170
+
171
+ ```
172
+ agentaudit setup Register + configure API key
173
+ agentaudit scan <url> [url...] Scan Git repositories
174
+ agentaudit check <name> Look up package in registry
175
+ agentaudit --help Show help
176
+ ```
177
+
178
+ ### Examples
179
+
180
+ ```bash
181
+ # Scan a single repo
182
+ agentaudit scan https://github.com/jlowin/fastmcp
183
+
184
+ # Scan multiple repos at once
185
+ agentaudit scan https://github.com/owner/repo1 https://github.com/owner/repo2
186
+
187
+ # Check registry for existing audit
188
+ agentaudit check mongodb-mcp-server
189
+ ```
190
+
191
+ ---
192
+
193
+ ## Requirements
194
+
195
+ - **Node.js 18+**
196
+ - **Git** (for cloning repos during scan)
197
+
198
+ ---
199
+
200
+ ## Related
201
+
202
+ - [agentaudit.dev](https://agentaudit.dev) — Trust registry & audit reports
203
+ - [agentaudit-skill](https://github.com/starbuck100/agentaudit-skill) — Full agent skill with gate scripts, detection patterns & peer review
204
+
205
+ ---
206
+
207
+ ## License
208
+
209
+ [AGPL-3.0](LICENSE)