Documentation Index
Fetch the complete documentation index at: https://docs.igrisecurity.com/llms.txt
Use this file to discover all available pages before exploring further.
Igris Scanner
Igris Scanner is a security toolkit for Model Context Protocol (MCP) configurations. It provides three layers of protection:
| Layer | Package | Purpose |
|---|
| Scanner | @igris/scanner (core) | Static analysis of MCP configs — 20 detectors, 91 rules |
| Runtime Proxy | @igris/proxy | Live policy enforcement, anomaly detection, session management |
| CLI | @igris/cli | Command-line scanner with auto-discovery for 42+ config locations |
How They Fit Together
Quick Start
Scan a config file
bunx igris scan ~/.claude/claude_desktop_config.json
Scan all known config locations
List all detection rules
Set up the MCP Gateway
See Gateway Setup for routing MCP clients through the Igris governance gateway.
Scoring
Every scan produces a security score from 0 to 10 with a letter grade:
| Grade | Score | Meaning |
|---|
| A | 9.0 - 10.0 | Excellent — no significant issues |
| B | 7.0 - 8.9 | Good — minor issues only |
| C | 5.0 - 6.9 | Fair — some medium-severity findings |
| D | 3.0 - 4.9 | Poor — high-severity issues present |
| F | 0.0 - 2.9 | Critical — immediate action required |
| Severity | Points deducted |
|---|
| Critical | -3.0 |
| High | -2.0 |
| Medium | -1.0 |
| Low | -0.5 |
| Info | 0 |
