Release v0.6.2 - Security Toolkit for AI Agents · getagentseal/agentseal

What's in this release

AgentSeal is a security toolkit for AI agents. This release includes the full Python package (PyPI) and JavaScript/TypeScript package (npm).

agentseal guard - Scans your machine for dangerous skills, MCP configs, toxic data flows, and supply chain changes across 17 AI agents. No API key needed.
agentseal shield - Watches your config files in real time with desktop notifications on threats.
agentseal scan - Tests your agent's system prompt against 191+ attack probes (extraction + injection). Deterministic scoring.
agentseal scan-mcp - Connects to live MCP servers and audits tool descriptions for poisoning with 4-layer analysis.

17 AI agents auto-discovered: Claude Desktop, Claude Code, Cursor, Windsurf, VS Code, Gemini CLI, Codex, Cline, Roo Code, Zed, Aider, Continue, Amp, OpenClaw, Kiro, OpenCode, and more
191 attack probes: 82 extraction + 109 injection techniques with 8 adaptive mutation transforms
MCP runtime scanning: Connect to live stdio/HTTP MCP servers, analyze tool descriptions for hidden instructions, zero-width characters, base64 payloads, cross-server collusion
Toxic data flow detection: Identifies dangerous combinations of MCP servers (e.g. filesystem + slack = exfiltration path)
Supply chain protection: Baseline tracking catches silent config changes (rug pull detection)
Continuous monitoring: Real-time file watching with debounced scanning and native desktop notifications
Deterministic scoring: Pattern matching, no AI judge. Same input, same result, every time.
CI/CD ready: --min-score flag, SARIF output for GitHub Security tab, JSON export
849 Python tests, 729 JavaScript tests

# Python
pip install agentseal

# JavaScript/TypeScript
npm install agentseal

agentseal guard    # scan your machine right now