ProofLayer LogoProofLayer
Now live on npm · MIT open source

Secure what AI
agents execute.

Runtime security for AI coding agents. Intercepts vulnerabilities, hallucinated packages, and prompt injection inline — before agents execute.

6,138 npm downloads · <30s setup · 8 AI coding agents · 4 surfaces · 1,700+ rules

Get StartedExplore ClawHub DashboardBook a Demo

Works with every AI coding agent

Claude Code
Cursor
Windsurf
Cline
OpenClaw
OpenCode
Cody
Kilo Code
Claude Code
Cursor
Windsurf
Cline
OpenClaw
OpenCode
Cody
Kilo Code
Claude Code
Cursor
Windsurf
Cline
OpenClaw
OpenCode
Cody
Kilo Code
The Blind Spot

Security tools weren't
built for real-time.

Scanners run after code is committed. By the time they flag a threat, the agent has already executed it.

5

CVEs in Anthropic's own MCP servers

9.6

Highest CVSS score found

3

OWASP frameworks mapped

59

Detection rules for MCP threats

How It Works

Same threat.Different timing.

See how ProofLayer intercepts threats that traditional tools miss until it's too late.

Traditional Security

Agent processes email

Email contains hidden prompt injection in HTML comment

Malicious action executes

Agent forwards sensitive emails to attacker-controlled address

Scanner runs post-commit

CI/CD pipeline flags suspicious code hours later

Damage already done

Sensitive data exfiltrated before detection

ProofLayer

Agent processes email

Email contains hidden prompt injection in HTML comment

ProofLayer intercepts

Injection pattern detected inline before execution

Action blocked

Email forwarding to external domain prevented

User notified

Alert with threat details sent to operator

Install

One codebase.
Four surfaces.

Install once from npm. Deploy as an MCP server, a CLI tool, an OpenClaw plugin, or an OpenClaw skill. Same engine everywhere — 1,700+ rules, AST + taint analysis, OWASP-mapped.

npm:agent-security-scanner-mcp
MCP Server
CLI
Plugin
Skill
Live

MCP Server

Real-time security inside any MCP agent

  • Real-time interception
  • 12 language support
  • Zero config
Live

CLI

Scan any codebase from the terminal

  • CI/CD integration
  • SARIF output
  • Batch scanning
Live

OpenClaw Plugin

Native security plugin for OpenClaw

  • Gateway-level scanning
  • Plugin health monitoring
  • Kill switch
Live

OpenClaw Skill

Deep skill security scanning for OpenClaw

  • 6-layer deep analysis
  • ClawHavoc malware detection
  • Rug pull detection
Why ProofLayer

Not a better scanner.
A different architecture.

ProofLayer doesn't compete with CI/CD tools. It operates inside the agent itself — intercepting threats at the source.

Without ProofLayer

Post-hoc detection

Threats found hours or days after code is written

CI/CD pipeline dependent

Security only runs when code is committed and pushed

Manual review required

Security alerts need human triage before action

Bolted-on integration

Separate tool, separate workflow, separate context

Blind to agent behavior

Can’t see prompt injection, hallucination, or exfiltration

With ProofLayer

Real-time interception

Threats blocked as the agent writes code, before execution

Inline with the agent

Operates inside the agent — MCP, CLI, or OpenClaw plugin

Automatic blocking

Dangerous actions prevented without human intervention

Native integration

Same workflow, same context — whether in Claude Code, Cursor, or OpenClaw

Agent-aware security

Purpose-built for prompt injection, hallucination, exfiltration

Start scanning.

One npm package. Four surfaces. Free and open source.

MCP ServerLive
CLILive
OpenClaw PluginLive
OpenClaw SkillLive

Free and open source. No credit card required.