More Tools

The homepage leads with the public package scanner. This page collects the rest of the AgentScore and KYA surface without turning the front door into a menu of everything.

Start Here

Public MCP package scanner

Scan any npm package for install scripts, prompt injection patterns, suspicious URLs, metadata issues, and dependency risk.

Open scanner

Free scan report

Request a short out-of-band review for a package or repo without adding AgentScore to your CI or runtime.

Request report

KYA APIs

Scanner API

Use `/api/scan` for package scans and `/api/scan/badge` for embeddable badges.

View docs

Agent screening API

Run the broader KYA checks for deployer, model, code, abuse, permissions, and deployment context.

View endpoints

Abuse database

Check or report abusive behaviour in the ecosystem using the public abuse endpoints.

Check abuse tools

Packages

mcp-trust-guard

Security middleware for MCP servers with KYA-style checks and abuse integration.

See package list

@agentscore-xyz/mcp-server

MCP server package for surfacing AgentScore and KYA tools inside MCP clients.

See package list

One front door, broader toolkit

AgentScore now leads with the most concrete workflow: package security scanning. KYA remains the broader toolkit behind that scanner, the written reports, and the screening APIs.

Scan a package Read methodology