github analyzed 91de0e6

capiscio/a2a-demos

Demo agents showcasing CapiscIO Agent Guard and MCP Guard — trust badges, identity verification, and tool-level authorization for A2A and MCP protocols

maintainer: capiscio
license: MIT
first seen: 2026-06-01
last seen: 2026-06-04
releases · 30d: 0
short id

Drift inferred · capture-to-capture

HIGH 2026-06-14 code analysis flagged dynamic code execution in capiscio/a2a-demos

capabilities0 tools

transport http counts 0 tools · 0 res · 0 prompts permission surface via code analysis

no tools enumerated yet for this server.

skills & danger signalsgithub-tarball

prompt-surface shipped agent-instruction files + hidden-content / dangerous-code findings — quoted from the analyzed source

analyzed commit 91de0e6 · analyzer v17 · 1h ago

skills & prompt files 1

agent-rulescapiscio-a2a-demos-91de0e6/.github/copilot-instructions.md

danger signals1

dynamic code executioneval()/exec()capiscio-a2a-demos-91de0e6/multi-agent-demo/agents/langchain-agent/main.py:159result = eval(compile(tree, '<calc>', 'eval'), {"__builtins__": {}}, {

code evidencevHEAD · github-tarball

evidence-backed findings quoted directly from the published source artifact — not inferred

filesystem 8

fs capiscio-a2a-demos-91de0e6/enforcement-demo/agents/trusted_agent.py :10 from pathlib import Path
fs capiscio-a2a-demos-91de0e6/enforcement-demo/agents/untrusted_agent.py :11 from pathlib import Path
fs capiscio-a2a-demos-91de0e6/multi-agent-demo/agents/crewai-agent/main.py :16 from pathlib import Path
fs capiscio-a2a-demos-91de0e6/multi-agent-demo/agents/langchain-agent/main.py :18 from pathlib import Path
fs capiscio-a2a-demos-91de0e6/multi-agent-demo/agents/langgraph-agent/main.py :17 from pathlib import Path
fs capiscio-a2a-demos-91de0e6/policy-demo/agents/trusted_agent.py :12 from pathlib import Path
fs capiscio-a2a-demos-91de0e6/policy-demo/agents/untrusted_agent.py :11 from pathlib import Path
fs capiscio-a2a-demos-91de0e6/policy-demo/scripts/setup_policies.py :58 with open(yaml_path) as f:

network 2

net capiscio-a2a-demos-91de0e6/multi-agent-demo/shared/capiscio_events/emitter.py :14 import httpx
net capiscio-a2a-demos-91de0e6/policy-demo/scripts/setup_policies.py :18 import httpx

secrets 4

secrets capiscio-a2a-demos-91de0e6/multi-agent-demo/agents/crewai-agent/main.py :291 api_key=os.environ.get("CAPISCIO_API_KEY", ""),
secrets capiscio-a2a-demos-91de0e6/multi-agent-demo/agents/langchain-agent/main.py :68 OPENAI_API_KEY = os.environ.get("OPENAI_API_KEY", "")
secrets capiscio-a2a-demos-91de0e6/multi-agent-demo/agents/langgraph-agent/main.py :62 OPENAI_API_KEY = os.environ.get("OPENAI_API_KEY", "")
secrets capiscio-a2a-demos-91de0e6/multi-agent-demo/shared/capiscio_events/emitter.py :58 self.api_key = api_key or os.environ.get("CAPISCIO_API_KEY", "")

tool registrations 6

get_price capiscio-a2a-demos-91de0e6/enforcement-demo/server/main.py :56
place_order capiscio-a2a-demos-91de0e6/enforcement-demo/server/main.py :66
cancel_all_orders capiscio-a2a-demos-91de0e6/enforcement-demo/server/main.py :86
get_price capiscio-a2a-demos-91de0e6/policy-demo/server/main.py :59
place_order capiscio-a2a-demos-91de0e6/policy-demo/server/main.py :69
cancel_all_orders capiscio-a2a-demos-91de0e6/policy-demo/server/main.py :89

declared dependencies 1

httpx@>=0.27.0