Skip to content

P1-mcp: add I/O secret leak scanner (Starknet patterns) #223

Open
Open
P1-mcp: add I/O secret leak scanner (Starknet patterns)#223
Assignees
omarespejel
Labels
area:infraCI/spec/conformance and toolingarea:securitySecurity hardening and threat-model correctnessenhancementNew feature or requestpriority:P1High leverage / next
@omarespejel

Description

@omarespejel
omarespejel
opened on Feb 13, 2026

Goal

Add request/response secret-leak scanner at MCP boundary.

Scope

  • Scan inbound tool args and outbound tool responses
  • Starknet-specific patterns (private key formats, signer secrets, env secret names)
  • Configurable action: block/redact/warn

Acceptance Criteria

  1. Known secret patterns are detected and blocked/redacted
  2. False-positive controls documented
  3. Security tests include prompt-injection exfiltration patterns

Related

Metadata

Metadata

Assignees

Labels

area:infraCI/spec/conformance and toolingarea:securitySecurity hardening and threat-model correctnessenhancementNew feature or requestpriority:P1High leverage / next

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions