CodeThreat
CodeThreat
Start new thread
Ogulcan Gurcaglar

AI Component Security Index - Security intelligence hub for AI agent components and skills

by
CodeThreat
Agent Security Index is a security data hub for MCP servers and Agent Skills. We monitor registries at enterprise scale (official MCP registry, npm, GitHub, SkillsMP, Tessl, ClawHub, and more), run multi-phase security scans, and publish risk profiles so you can see vulnerabilities before adoption. Use it to check risk scores, severity breakdowns, and remediation guidance before adding a component to your AI agent. Built by CodeThreat. Open and free to use.

Add a comment

Replies

Best
Ogulcan Gurcaglar
Maker
📌
We’ve been watching MCP servers and Agent Skills become core infra for AI agents, but there was no central place to check their security before you adopt them. So we built Agent Security Index. We monitor skill and MCP registries at enterprise scale: the official MCP registry, npm, GitHub, SkillsMP, Tessl, ClawHub, and more. Continuous ingestion, multi-phase scans, and a searchable security hub. Think OSS Index or Socket.dev, but for the agentic stack. Happy to answer questions and hear what you’d want to see next.
Edward

Interesting focus on reducing false positives in security scanning.

Question: how do you balance speed vs accuracy when reviewing pull requests in real-time?

Most SAST tools either miss edge cases or slow down CI/CD pipelines significantly.

Curious about your approach to this trade-off.