Find risky access
Detect broad paths, admin-like scopes, wildcard network permissions, and shell-enabled workflows.
AI agent security scanner
AgentFence finds broad filesystem access, secret exposure, destructive commands, unsafe runtime settings, and policy gaps in tool-connected LLM workflows.
$ npx agentfence scan --path .
AgentFence scan complete
Risk score: 100/100 (critical)
Findings: 2 critical, 3 high, 6 medium
Why it matters
Detect broad paths, admin-like scopes, wildcard network permissions, and shell-enabled workflows.
Flag destructive command patterns, secret-looking config keys, and unsafe runtime settings.
Generate JSON, HTML, and SARIF reports, then fail builds by score or severity.
Paid beta
For small teams and agencies using MCP servers, coding agents, and tool-connected LLM workflows. Get up to 3 repositories scanned, a monthly risk report, and prioritized remediation notes.
$19/month
Usage
npx agentfence scan --path . \
--json agentfence-report.json \
--sarif agentfence-report.sarif \
--fail-on high
GitHub Action
- uses: Dev-Atmos/AgentFence@main
with:
path: .
fail-on: high
sarif: agentfence-report.sarif