Skip to main content

MCP server for agent safety: prompt-injection scan, URL reputation, on-chain agent trust and AML/sanctions screening, paid per-call over x402 (free tier included).

Project description

cheetah-firewall-mcp

MCP server that gives any MCP-capable agent three input-safety tools from cheetahsecurity.de, billed per call over x402 (USDC on Base) — with a free tier so it works out of the box:

Tool What it does
scan_prompt(text) Prompt-injection firewall — scan untrusted text before acting on it
check_url(url) URL / domain reputation — phishing & malicious-link signals
check_agent_trust(agent_address) On-chain trust score for another agent's Base wallet (PROCEED/CAUTION/BLOCK)
screen_counterparty(agent_address) AML / sanctions screening (OFAC + exposure + scam list) before sending funds (CLEAR/REVIEW/BLOCK)

Why: on an agent network, every post, reply, tool result or web page your agent reads is untrusted input. These tools let it check that input before it becomes action.

Install & run

# via uvx (no install)
uvx cheetah-firewall-mcp

# or pip
pip install cheetah-firewall-mcp
cheetah-firewall-mcp

Add to an MCP client (e.g. Claude Desktop / Claude Code mcp config):

{
  "mcpServers": {
    "cheetah-security": {
      "command": "uvx",
      "args": ["cheetah-firewall-mcp"]
    }
  }
}

That's it — the free tier gives every caller a daily allowance, no wallet required.

Paid mode (optional, unlimited)

When the free allowance runs out the endpoints return HTTP 402. To pay the micro-fee automatically (fractions of a cent per call), install the pay extra and point the server at a funded Base wallet:

pip install 'cheetah-firewall-mcp[pay]'
export X402_PRIVATE_KEY=0x...   # a Base (EVM) key with a little USDC
cheetah-firewall-mcp

Pricing (per call): scan_prompt ~$0.004 · check_url ~$0.003 · check_agent_trust ~$0.005 · screen_counterparty ~$0.02. The key stays in the process and is never logged.

Configuration

Env var Default Purpose
CHEETAH_BASE https://x402.cheetahsecurity.de service base URL
X402_PRIVATE_KEY Base wallet key for automatic paid mode (optional)
CHEETAH_HTTP_TIMEOUT 30 per-request timeout (seconds)

MIT licensed. Detection engines are self-hosted; the only third-party call is public RDAP for domain age.

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

cheetah_firewall_mcp-1.1.0.tar.gz (4.6 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

cheetah_firewall_mcp-1.1.0-py3-none-any.whl (5.9 kB view details)

Uploaded Python 3

File details

Details for the file cheetah_firewall_mcp-1.1.0.tar.gz.

File metadata

  • Download URL: cheetah_firewall_mcp-1.1.0.tar.gz
  • Upload date:
  • Size: 4.6 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/6.2.0 CPython/3.11.2

File hashes

Hashes for cheetah_firewall_mcp-1.1.0.tar.gz
Algorithm Hash digest
SHA256 383a08723bc7a365ea53c6f67de60f6a77cc65e95fb0b19cd48bfc6837589662
MD5 93ade08dc4a43dd9a5c303319d782144
BLAKE2b-256 1d39dcb812c819f4c822e61d5392241cb344c51100eb9bf04d30163a956e28b2

See more details on using hashes here.

File details

Details for the file cheetah_firewall_mcp-1.1.0-py3-none-any.whl.

File metadata

File hashes

Hashes for cheetah_firewall_mcp-1.1.0-py3-none-any.whl
Algorithm Hash digest
SHA256 41610dafe06d88d2f4be10aeed9b2f2ea74fe0b7508b6db23616ca0155569678
MD5 6f0d009d97a712240edbf307742857a5
BLAKE2b-256 f30fa5c1929b884e1b7fe98ba35ae2c0b3a3735711f664fc02db253373060f95

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page