Tool Security Audit
Category: Security · Tier: All
Audit MCP tool definitions for prompt injection attacks. Scans tool descriptions for cross-tool instructions, privilege escalation, and data exfiltration patterns. Returns a detailed report of any issues found.
When to Use
Security audit checks for common web vulnerabilities. This includes XSS vectors, CSRF tokens, content security policy, and mixed content.
Parameters
| Parameter | Type | Required | Description |
|---|---|---|---|
| config_path | string | No | Path to claude_desktop_config.json. If not provided, scans the current CBrowser server's tools. |
| format | string | No | Output format: json (structured) or text (human-readable) |
| async_scan | boolean | No | If true, connects to MCP servers to scan their tools (slower but more accurate). |
Example
Run a security audit on our login page
Tips
- Combine with other tools for full analysis
Related
- Tools Overview — All 120 tools by category