npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

prompt-guard-mcp

v1.0.3

Published

AI-powered security risk analysis via Model Context Protocol

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

dendromandendroman

Keywords

mcpmodel-context-protocolsecurityairisk-analysisollamasafetycode-analysissecurity-scanner

Readme

Prompt Guard MCP 🛡️

AI-powered security risk analysis via Model Context Protocol (MCP)

npm version License: MIT Node.js Version

Overview

Prompt Guard MCP is a security-focused MCP (Model Context Protocol) server that provides AI-powered risk analysis for operations and commands. It integrates with local Ollama models to evaluate potential security risks before operations are executed.

Features

  • 🔍 Risk Analysis: AI-powered security risk assessment
  • 🤖 Local AI: Uses local Ollama models for privacy
  • 🛡️ Security-First: Designed with security as the primary concern
  • 🔌 MCP Compatible: Works with any MCP-compatible client
  • Fast: Quick risk analysis for real-time protection

Installation

Via npm (Recommended)

npm install -g prompt-guard-mcp

Via npx (No Installation)

npx prompt-guard-mcp

From Source

git clone https://github.com/dendroman/prompt-guard-mcp.git
cd prompt-guard-mcp
npm install
npm run build
npm start

Prerequisites

  • Node.js: Version 18 or higher
  • Ollama: Local Ollama installation with a supported model

Installing Ollama

  1. Install Ollama from ollama.com
  2. Pull a supported model:
    ollama pull llama-guard3:1b  # Lightweight option
ollama pull llama-guard3:8b  # Default option

Quick Start

1. Install and Setup

# Install globally
npm install -g prompt-guard-mcp

# Or use without installation
npx prompt-guard-mcp

2. VS Code Integration (Recommended)

  1. Create MCP configuration:

    mkdir -p .vscode

  2. Create .vscode/mcp.json:

    {
  "servers": {
    "prompt-guard-mcp": {
      "command": "npx",
      "args": ["prompt-guard-mcp"],
      "env": {
        "GUARD_MODEL": "llama-guard3:1b"
      }
    }
  }
}

  3. Add security instructions (create .github/copilot-instructions.md):

    # Prompt Guard MCP Security Protocol

**ALL AI ASSISTANTS MUST:**

1. Execute risk analysis FIRST - Call `prompt_guard_analyze_risk` before ANY action
2. Follow actions EXACTLY - Never override returned actions
3. NO EXCEPTIONS - Risk analysis is mandatory, not optional

  4. Restart VS Code to activate Prompt Guard MCP protection

3. Test the Integration

Use GitHub Copilot Chat or similar and try:

{
  "tool": "prompt_guard_analyze_risk",
  "parameters": {
    "operation": "Install lodash package via npm",
    "context": {
      "package": "lodash",
      "environment": "development"
    }
  }
}

Configuration

Environment Variables

Configure Prompt Guard MCP using environment variables:

| Variable | Default | Description | | ---------------------- | ------------------------ | ------------------------ | | GUARD_MODEL | llama-guard3:8b | Ollama model name | | GUARD_OLLAMA_URL | http://localhost:11434 | Ollama server URL | | GUARD_WORKSPACE_ROOT | process.cwd() | Workspace root directory |

MCP Client Configuration

For advanced configuration or other MCP clients, you can customize the setup:

Advanced MCP Configuration

For development or advanced use cases, you may want additional environment variables:

{
  "servers": {
    "prompt-guard-mcp": {
      "command": "npx",
      "args": ["prompt-guard-mcp"],
      "env": {
        "GUARD_WORKSPACE_ROOT": ".",
        "GUARD_MODEL": "llama-guard3:1b",
        "GUARD_OLLAMA_URL": "http://localhost:11434"
      }
    }
  }
}

Example Environment Configuration

export GUARD_MODEL=llama3:8b
export GUARD_OLLAMA_URL=http://localhost:11434
prompt-guard-mcp

MCP Tools

prompt_guard_analyze_risk

Analyzes the security risk of a proposed operation.

Parameters:

  • operation (required): Description of the operation to analyze
  • context (optional): Additional context about the operation

Returns:

  • risk: Risk level (low, medium, high)
  • reasons: Array of risk factors identified
  • actions: Recommended actions
  • mandatory_actions: Human-readable actions

Example Response:

{
  "risk": "medium",
  "reasons": [
    "Operation involves file deletion",
    "Could affect system stability"
  ],
  "actions": ["require_human_confirm"],
  "mandatory_actions": "⚠️ Operation requires human confirmation"
}

Usage Examples

Command Line Testing

# Basic risk analysis
echo '{"operation": "rm -rf /tmp/*"}' | prompt-guard-mcp --stdin

# With context
echo '{
  "operation": "Install new npm package",
  "context": {"package": "lodash", "version": "4.17.21"}
}' | prompt-guard-mcp --stdin

MCP Client Integration

// Example MCP client usage
const result = await mcpClient.callTool("prompt_guard_analyze_risk", {
  operation: "Download and execute script from internet",
  context: {
    url: "https://example.com/script.sh",
    user: "developer",
  },
});

console.log(`Risk Level: ${result.risk}`);
console.log(`Mandatory actions: ${result.mandatory_actions}`);

Security Model

Prompt Guard MCP follows a security-first approach:

  1. Local Processing: All analysis happens locally using Ollama
  2. No Data Transmission: Operations are not sent to external services
  3. Conservative Defaults: When in doubt, flag as higher risk
  4. Transparent Analysis: Clear reasoning for all risk assessments

Risk Levels

  • Low: Operation is generally safe
  • Medium: Operation requires caution or confirmation
  • High: Operation is potentially dangerous and should be blocked

OWASP LLM01 Compliance

Prompt Guard MCP implements OWASP LLM01 guidelines for prompt injection prevention:

  • Input Sanitization: All user inputs are treated as data, not instructions
  • Instruction Separation: Clear separation between system instructions and user data
  • Fail-Closed Security: When analysis fails, defaults to blocking the operation
  • Multi-modal Protection: Guards against various injection vectors

Development

Building from Source

git clone https://github.com/dendroman/prompt-guard-mcp.git
cd prompt-guard-mcp
npm install
npm run build

Contributing

  1. Fork the repository
  2. Create a feature branch
  3. Make your changes
  4. Add tests
  5. Submit a pull request

Troubleshooting

Common Issues

Ollama Connection Failed

Error: Failed to connect to Ollama at http://localhost:11434
  • Ensure Ollama is running: ollama serve
  • Check if the model is available: ollama list
  • Verify the URL in your configuration

Model Not Found

Error: Model 'llama-guard3:8b' not found
  • Pull the model: ollama pull llama-guard3:8b
  • Or use a different model: export GUARD_MODEL=llama-guard3:1b

Permission Denied

Error: EACCES: permission denied
  • Check file permissions
  • Avoid running as root unless necessary

License

MIT License - see LICENSE.md for details.

Acknowledgments

  • Built on the Model Context Protocol
  • Powered by Ollama for local AI inference
  • Inspired by security-first development practices
  • OWASP LLM01 compliance for prompt injection prevention

Made with ❤️ for secure AI-powered development