OWASP Top 10 for AI Agents security assessment tools. Capabilities: full agent security scan, prompt injection detection, tool poisoning check, excessive agency, data leakage. Built by MEOK AI Labs.
Project description
OWASP Agentic MCP
OWASP Top 10 for AI Agents Security Assessment — Prompt Injection, Tool Poisoning, Data Leakage
Overview
Security assessment tools based on the OWASP Top 10 for AI Agents. Scan agent configurations for prompt injection vulnerabilities, tool poisoning risks, excessive agency, data leakage, and more.
Tools
| Tool | Description | Parameters |
|---|---|---|
full_agent_scan |
Full OWASP Agentic Top 10 security scan | agent_config, tools, permissions |
assess_agentic_security |
Assess against specific OWASP Agentic categories | categories, agent_config |
check_prompt_injection |
Test for prompt injection vulnerabilities | system_prompt, user_input_template |
check_tool_poisoning |
Check for tool poisoning risks | tool_definitions, input_validation |
check_excessive_agency |
Assess agency level vs minimum required | allowed_tools, required_tools, permissions |
Installation
pip install mcp
Claude Desktop / Cursor / VS Code / Windsurf
{
"mcpServers": {
"owasp-agentic": {
"command": "python",
"args": ["path/to/server.py"]
}
}
}
Usage Examples
Full agent security scan
{
"agent_config": {
"system_prompt": "You are a helpful assistant that can access email, calendar, and file system.",
"allowed_tools": ["send_email", "read_calendar", "write_file"]
},
"permissions": ["email:send", "calendar:read", "files:write"]
}
Check prompt injection
{
"system_prompt": "You are a financial advisor bot",
"user_input_template": "{user_query} Please provide investment advice."
}
Pricing
- Free: 10 scans/day
- Pro: $99/mo — unlimited scans + detailed reports
- Enterprise: $499/mo — continuous monitoring + custom rules
Built by MEOK AI Labs | meok.ai
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file owasp_agentic_mcp-1.0.6.tar.gz.
File metadata
- Download URL: owasp_agentic_mcp-1.0.6.tar.gz
- Upload date:
- Size: 61.3 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.9.6
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
7600833b774d43b77a7a32b4e0fec8afbf52e4ca5c706eb2bbb9988267280af9
|
|
| MD5 |
5da264dbd80c5818705f559193925580
|
|
| BLAKE2b-256 |
b92e8bc14e781437a4c1d7f4a6c1a6ac473aadba2730ce6c9a5b2d1cb5225977
|
File details
Details for the file owasp_agentic_mcp-1.0.6-py3-none-any.whl.
File metadata
- Download URL: owasp_agentic_mcp-1.0.6-py3-none-any.whl
- Upload date:
- Size: 10.7 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.9.6
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
09863aa9f2b1da37a64cc1a604eff6d1ca88b9a8174752ee237887b85c0d6214
|
|
| MD5 |
0413f665a16075ef6aaf2139b9b688b3
|
|
| BLAKE2b-256 |
53601220b9d1b65afe41f920e48f1b7c5e7e53ce137e14cf0e3fe8d549098fa9
|
