Bawbel Scanner
Verified · todaySecurity scanner for MCP servers and skill files. Detects AVE vulnerabilities before production.
Install
claude mcp add scanner -- uvx bawbel-scanner
Our take
Security scanner for MCP servers, skill files, and related agent components, with static checks for prompt injection, tool poisoning, toxic flows, secrets, and conformance. It is young and the AVE/AIVSS ecosystem is largely the vendor’s own, but the repo has real implementation, tests, Docker packaging, and clear “never executes your server” positioning. Best fit is a preflight scanner for teams experimenting with agent-facing files rather than a mature replacement for general AppSec tools.
Verification record
- today
- 9
- yesterday
- no
- NOASSERTION
- 2026-05-23