Pipelock

by luckypipewrench · File Systems · mcp-server, python

Security harness that wraps MCP servers as stdio proxies with credential exfiltration prevention, DLP pattern matching, and SSRF protection.

Pipelock is a security proxy that wraps MCP servers, scanning bidirectional traffic for threats. It prevents credential exfiltration through a configurable fetch proxy with SSRF protection, detects prompt injection in both client requests and server responses, and monitors tool list changes for tampering. Features include a 9-layer URL scanning pipeline, file integrity monitoring with SHA256 manifests, Ed25519 signing for multi-agent verification, and three configurable security modes (strict, balanced, audit).

Source: https://github.com/luckypipewrench/pipelock

Install

git clone https://github.com/luckypipewrench/pipelock

Tags: mcp-server, python

282 GitHub stars · Source: pulsemcp

About File Systems MCP servers and Claude skills

File Systems MCP servers extend what AI agents can do inside Claude Code, Cursor, Copilot, Codex, and Windsurf. The Skiln directory indexes 16,000+ such integrations across 22 categories.

Pipelock is one of hundreds of File Systems entries indexed on Skiln. Browse the full File Systems category or the complete directory of Claude skills, MCP servers, agents, commands, and hooks.

Related File Systems MCPs and skills

  • Code Execution Mode by elusznik

    Execute Python in isolated containers while bridging access to other MCP servers through auto-discovered proxies

  • Azure DevOps by tiberriver256

    Integrates with Azure DevOps to enable AI-driven management of projects, work items, repositories, pull requests, branches, and pipelines for enhanced DevOps workflows and automation.

  • FreeCAD by neka-nat

    Enables AI-driven CAD modeling by providing a remote procedure call (RPC) server that allows programmatic control of FreeCAD, supporting operations like creating documents, inserting parts, editing objects, and executing Python code for generative design workflows.

  • Runno by taybenlor

    Execute code in a secure WebAssembly sandbox supporting Python, JavaScript, C, C++, Ruby, and PHP

  • Documentation Scraper by arabold

    Provides specialized documentation scraping and retrieval from GitHub, NPM, PyPI, and web pages, enabling accurate reference to up-to-date library documentation without disrupting workflow.

  • Sandbox Container by cloudflare

    Provides a secure, sandboxed environment for executing Python, Node.js, and shell commands in ephemeral containers with file management capabilities for code testing, visualization, and data analysis.

  • Pipedream by pipedreamhq

    Access hosted MCP servers or deploy your own for 2,500+ APIs like Slack, GitHub, Notion, Google Drive, and more, all with built-in auth and 10k tools.

  • Rust Docs by govcraft

    Efficiently loads and processes Rust crate documentation using LlamaIndex's HTML reader, with intelligent file selection logic to handle duplicate files and optional comprehensive parsing modes.

Frequently asked questions

How do I install Pipelock?

Add the install command above to your Claude Code, Cursor, or Windsurf MCP configuration. Most servers register via npx, a local command, or a Docker image. Refer to the source repository for environment variables and credential requirements.

Which clients support Pipelock?

Any MCP-compatible client works: Claude Desktop, Claude Code CLI, Cursor, Windsurf, Zed, and VS Code with the official MCP extension. OpenAI Codex and GitHub Copilot increasingly support MCP via adapter bridges.

Is Pipelock free?

The server itself is typically open source. Any upstream service (API keys, paid tiers, hosted infrastructure) may have its own pricing. Check the source repository for details.