The mcp-context-protector server acts as a security wrapper that protects MCP client applications from risks posed by untrusted MCP servers, including prompt injection attacks, unauthorized configuration changes, and malicious tool responses. It provides trust-on-first-use configuration pinning, automatic blocking of unapproved server changes, guardrail scanning of tool outputs, and ANSI control character sanitization. By intercepting and validating server communications, it enforces security controls universally across all MCP client applications without requiring modifications to individual hosts or pre-installation scanning.
claude mcp add --transport stdio trailofbits-mcp-context-protector uvx mcp-context-protector