MCP Security
The Model Context Protocol (MCP) lets AI agents call external tools — file systems, shells, databases, and web services. That power is also the risk: a single over-permissioned or malicious tool can exfiltrate data or run destructive actions. SoterAI IDE Guard scans your MCP configs locally, surfaces what each tool can actually do, and flags risky recommendations before you enable them.
Runs locally in your editor. Secret, PII, prompt-injection, and MCP scanning happen on your machine before anything reaches an AI model.
Detect MCP server definitions in your workspace and review them in one place instead of trusting them blind.
Surface the capabilities each MCP tool requests — file access, shell execution, network — so scope is explicit.
Flag and block over-broad or suspicious MCP tool recommendations before they are added to your setup.
Produce a starting policy that constrains MCP tools to least-privilege defaults you can adjust.
Scan the workspace
Run “Scan MCP Configs” to find MCP server definitions and tool declarations.
Review permissions
Inspect what each tool can do and identify anything broader than the task requires.
Block or constrain
Block risky recommendations and generate a safe baseline policy for the tools you keep.
Re-scan on change
Re-run the scan whenever configs change or a new tool is proposed.
No security tool is perfect. Here is what this feature does not claim to do, so you can layer defenses appropriately.
The Model Context Protocol lets AI agents invoke external tools. Because those tools can touch files, shells, and networks, an over-permissioned or malicious tool is a real exfiltration and execution risk — so reviewing permissions before enabling matters.
No. MCP scanning runs locally in the extension. Cloud features are opt-in and disabled in untrusted workspaces.
It can flag over-broad permissions and known risky patterns and help you block or constrain them. It cannot guarantee a tool is safe at runtime, which is why least privilege and isolation still matter.
Install SoterAI IDE Guard and scan secrets, prompts, MCP tools, and terminal commands locally before they ever reach an AI model.
Install for VS Code