Shellward

Name: Shellward
Author: jnMetaCode

jnMetaCode/shellward

Guard agent tool use with injection detection, PII scanning, command safety checks, and DLP before risky actions run.

Overview

Shellward is a MCP server for the Ship phase that provides 7 security tools for agent injection detection, PII scanning, command safety, and DLP.

What is this MCP server?

7 MCP security tools covering injection detection, PII scan, command safety, and DLP
SHELLWARD_MODE: enforce (block + log) or audit (log only) for gradual rollout
Configurable injection threshold 0–100 via SHELLWARD_THRESHOLD (lower = stricter)
Locale support auto, zh, or en via SHELLWARD_LOCALE
npm shellward package v0.5.11 with stdio MCP transport
7 MCP security tools (injection, PII, command safety, DLP per description)
Package shellward version 0.5.11 on npm stdio transport
Env vars: SHELLWARD_MODE, SHELLWARD_LOCALE, SHELLWARD_THRESHOLD (0–100)

Compatible agents: Claude Code, Cursor, Codex, Windsurf

Community signal: 108 GitHub stars.

What problem does it solve?

Autonomous coding agents can run dangerous shell commands or leak PII without a guardrail layer you control in MCP.

Who is it for?

Builders shipping agent workflows with terminal and file tools who want MCP-native security gates before going live.

Skip if: Static-only repos with no agent tool execution or teams that only need SAST on application code, not agent runtime.

What do I get? / Deliverables

Tool calls pass through configurable enforce or audit checks so unsafe injections, commands, and sensitive data are blocked or logged.

Seven security MCP tools available to the agent toolchain
Logged or blocked risky injections, commands, and PII per your mode
Tuned SHELLWARD_THRESHOLD and locale for your risk appetite

Recommended MCP Servers

1Claw Vault1clawAI/1claw-mcp

1Claw Vault exposes a stdio MCP server (@1claw/mcp) that connects AI agents to HSM-backed secret storage with just-in-ti…2 stars

1passwordCakeRepository/1Password-MCP

The 1Password MCP server lets solo builders wire service-account access into Claude Code, Cursor, or other stdio MCP hos…16 stars

402sentinel Mcpkaditang/402sentinel-mcp

402 Sentinel MCP gives solo builders and agent authors a pre-flight check before honoring x402 payment flows on Base. In…1 stars

A2adependencyinspector Mcpclauxel/a2a-dependency-inspector-mcp

A2A Dependency Inspector MCP is a hosted Clauxel server for builders shipping agent-to-agent (A2A) workflows who must pr…

A2a Governance Bridge Mcp

A2A Governance Bridge is a Model Context Protocol server that exposes governance-oriented tools for multi-agent setups: …

A2aidentitytoll Mcpclauxel/a2a-identity-toll-mcp

A2A Identity Toll MCP is a Clauxel-hosted remote MCP server that acts as an identity and policy toll booth for agent-to-…

Journey fit

Primary fit

Shipping agent-assisted code means trusting autonomous commands—security gates belong in the ship phase before production exposure. Security subphase covers hardening agent behavior, not just app CVE scanning.

How it compares

Agent-runtime security MCP, not a dependency vulnerability scanner or generic code-review skill.

Common Questions / FAQ

Who is Shellward for?

Solo and indie developers operating AI agents with shell and file access who need injection, PII, command-safety, and DLP controls at the MCP layer.

When should I use Shellward?

Use it in ship and security prep when agents can execute commands or handle user data and you want enforce or audit modes before production traffic.

How do I add Shellward to my agent?

Install the npm package shellward (0.5.11) as a stdio MCP server, set SHELLWARD_MODE, optional SHELLWARD_THRESHOLD and SHELLWARD_LOCALE, then wire it into Claude Code, Cursor, or Codex MCP settings.

Shellward

jnMetaCode/shellward

Guard agent tool use with injection detection, PII scanning, command safety checks, and DLP before risky actions run.

Overview

Shellward is a MCP server for the Ship phase that provides 7 security tools for agent injection detection, PII scanning, command safety, and DLP.

What is this MCP server?

7 MCP security tools covering injection detection, PII scan, command safety, and DLP
SHELLWARD_MODE: enforce (block + log) or audit (log only) for gradual rollout
Configurable injection threshold 0–100 via SHELLWARD_THRESHOLD (lower = stricter)
Locale support auto, zh, or en via SHELLWARD_LOCALE
npm shellward package v0.5.11 with stdio MCP transport
7 MCP security tools (injection, PII, command safety, DLP per description)
Package shellward version 0.5.11 on npm stdio transport
Env vars: SHELLWARD_MODE, SHELLWARD_LOCALE, SHELLWARD_THRESHOLD (0–100)

Compatible agents: Claude Code, Cursor, Codex, Windsurf

Community signal: 108 GitHub stars.

What problem does it solve?

Autonomous coding agents can run dangerous shell commands or leak PII without a guardrail layer you control in MCP.

Who is it for?

Builders shipping agent workflows with terminal and file tools who want MCP-native security gates before going live.

Skip if: Static-only repos with no agent tool execution or teams that only need SAST on application code, not agent runtime.

What do I get? / Deliverables

Tool calls pass through configurable enforce or audit checks so unsafe injections, commands, and sensitive data are blocked or logged.

Seven security MCP tools available to the agent toolchain
Logged or blocked risky injections, commands, and PII per your mode
Tuned SHELLWARD_THRESHOLD and locale for your risk appetite

Recommended MCP Servers

1Claw Vault1clawAI/1claw-mcp

1Claw Vault exposes a stdio MCP server (@1claw/mcp) that connects AI agents to HSM-backed secret storage with just-in-ti…2 stars

1passwordCakeRepository/1Password-MCP

The 1Password MCP server lets solo builders wire service-account access into Claude Code, Cursor, or other stdio MCP hos…16 stars

402sentinel Mcpkaditang/402sentinel-mcp

402 Sentinel MCP gives solo builders and agent authors a pre-flight check before honoring x402 payment flows on Base. In…1 stars

A2adependencyinspector Mcpclauxel/a2a-dependency-inspector-mcp

A2A Dependency Inspector MCP is a hosted Clauxel server for builders shipping agent-to-agent (A2A) workflows who must pr…

A2a Governance Bridge Mcp

A2A Governance Bridge is a Model Context Protocol server that exposes governance-oriented tools for multi-agent setups: …

A2aidentitytoll Mcpclauxel/a2a-identity-toll-mcp

A2A Identity Toll MCP is a Clauxel-hosted remote MCP server that acts as an identity and policy toll booth for agent-to-…

Journey fit

Primary fit

How it compares

Agent-runtime security MCP, not a dependency vulnerability scanner or generic code-review skill.

Common Questions / FAQ

Who is Shellward for?

Solo and indie developers operating AI agents with shell and file access who need injection, PII, command-safety, and DLP controls at the MCP layer.

When should I use Shellward?

Use it in ship and security prep when agents can execute commands or handle user data and you want enforce or audit modes before production traffic.

How do I add Shellward to my agent?

Install the npm package shellward (0.5.11) as a stdio MCP server, set SHELLWARD_MODE, optional SHELLWARD_THRESHOLD and SHELLWARD_LOCALE, then wire it into Claude Code, Cursor, or Codex MCP settings.

Overview

What is this MCP server?

What problem does it solve?

Who is it for?

What do I get? / Deliverables

Recommended MCP Servers

Journey fit

Who is Shellward for?

When should I use Shellward?

How do I add Shellward to my agent?

This week for builders

Overview

What is this MCP server?

What problem does it solve?

Who is it for?

What do I get? / Deliverables

Recommended MCP Servers

Journey fit

Who is Shellward for?

When should I use Shellward?

How do I add Shellward to my agent?