A JSON-RPC firewall for MCP agents — inspects every tools/call between an LLM and its MCP servers, blocking argument injection and capability creep before they reach the host.
Drift inferred · capture-to-capture
- HIGH code analysis flagged committed secret in Builder106/Halberd
transport stdio counts 0 tools · 0 res
· 0 prompts
permission surface via code analysis
no tools enumerated yet for this server.
prompt-surface
shipped agent-instruction files + hidden-content / dangerous-code findings —
quoted from the analyzed source
analyzed commit 4247df4 · analyzer v17 · 1h ago
danger signals1
- committed secretGitHub tokenBuilder106-Halberd-4247df4/web/src/lib/presets.ts:340
ghp_AA…(40 chars, redacted)
evidence-backed
findings quoted directly from the published source artifact — not inferred
network 1
- net Builder106-Halberd-4247df4/web/src/lib/halberd.ts :73
fetch("/halberd.wasm"),
declared dependencies 16
- @vercel/analytics@^2.0.1
- @vercel/speed-insights@^2.0.0
- next@16.2.6
- react@19.2.4
- react-dom@19.2.4
- @playwright/test@^1.60.0
- @tailwindcss/postcss@^4
- @types/node@^20
- @types/react@^19
- @types/react-dom@^19
- eslint@^9
- eslint-config-next@16.2.6
- playwright@^1.60.0
- playwright-bdd@^8.5.1
- tailwindcss@^4
- typescript@^5