Igris Scanner
Igris Scanner is a security toolkit for Model Context Protocol (MCP) configurations. It provides three layers of protection:| Layer | Package | Purpose |
|---|---|---|
| Scanner | @igris/scanner (core) | Static analysis of MCP configs — 10 detectors, 42 rules |
| Runtime Proxy | @igris/proxy | Live policy enforcement, anomaly detection, session management |
| CLI | @igris/cli | Command-line scanner with auto-discovery for 42+ config locations |
How They Fit Together
Quick Start
Scan a config file
Scan all known config locations
List all detection rules
Set up the runtime proxy
See Proxy Setup for routing MCP clients through Igris.Scoring
Every scan produces a security score from 0 to 10 with a letter grade:| Grade | Score | Meaning |
|---|---|---|
| A | 9.0 - 10.0 | Excellent — no significant issues |
| B | 7.0 - 8.9 | Good — minor issues only |
| C | 5.0 - 6.9 | Fair — some medium-severity findings |
| D | 3.0 - 4.9 | Poor — high-severity issues present |
| F | 0.0 - 2.9 | Critical — immediate action required |
| Severity | Points deducted |
|---|---|
| Critical | -3.0 |
| High | -2.0 |
| Medium | -1.0 |
| Low | -0.5 |
| Info | 0 |