What Vulkro Labs checks
Free tools that vet what your AI pulls in.
Most of the risk in an AI-assisted project arrives from outside: the package your assistant hallucinated, the MCP server you installed on faith, the editor extension with too much access. Vulkro Labs is a set of free, open-source tools that vet what enters your project before it runs. The commercial scanner reviews the code you write; Labs guards the front door.
Free · open source, MIT or Apache-2.0 · runs on your machine
$ curl -fsSL https://dist.vulkro.com/install-live.sh | bash
github.com/vulkro/vulkro-labs read every detector before you run it
Twelve free commands that vet what your AI pulls in: the packages it installs, the MCP servers and tools it trusts, the skills and memory it runs on, and the agent cards it talks to. All shipped. Pick one to jump to the detail.
Risky packages
Slopsquat map
MCP tool safety
Is this MCP server safe?
Whole agent surface
Skills
Agent memory
MCP rug pulls
A2A cards
Trust store
In the agent loop
One command installs all twelve, and they all run on your machine.
How it works
Keyless, and it never leaves your machine.
Your AI suggests a package and you install it, sight unseen. Vulkro Labs puts one check in between: it looks the package up in the public registry and the malicious-package records, and tells you whether it is safe to add, before it ever enters your project.
Vulkro Labs ships as the vulkro-live CLI.
Same suggestion. The only difference is the one check that sits between the AI and your install command.
$ vulkro-live verify --manifest package.json OK express real, established, not flagged [CRITICAL] MALICIOUS lodahs flagged by OSV [CRITICAL] MISSING reqwest-helper not in the registry
The same keyless lookup powers the risky, malicious, and hallucinated package checks, on the command line and in the browser. Only public package metadata leaves your machine. Your source never does.
Group 01 / The packages your AI suggests
Vet every package before it enters your project.
Give these a package name or point them at a manifest. Both run on your machine and send only public package metadata.
verify
foresee
Group 02 / The rest of the agent surface
The MCP servers, tools, skills, and memory your agent trusts.
Beyond packages, an AI agent trusts MCP servers, skills, stored memory, and other agents. The same keyless CLI vets all of them, keeps your clear-list in a committable trust store, and plugs into the agent itself as an MCP server.
warden
inspect
audit
skillscan
memcheck
lock / drift
cardcheck
trustdb
mcp
One install ships the whole set. Every command is free, keyless, and runs on your machine. Every check takes --format sarif, so the same guardrails gate CI through GitHub Code Scanning.
The proof
Free, open source, and keyless.
No sign-up, no API key, and no backend to trust. The tools query free public feeds directly from your machine and send only public package metadata.
These free tools are open source under MIT or Apache-2.0. The Vulkro scanner engine is a separate, licensed product.
Free / Vulkro Labs
Vets what enters your project.
Packages, MCP servers, tools, skills, memory, agent cards: checked before they get in. Open source, keyless, on your machine.
Licensed / Vulkro engine
Analyzes the code you wrote.
Endpoints, cross-file taint, dependency CVEs, secrets, and the rest of the pre-deploy review live in the closed, licensed scanner. See what the engine checks →
The free tools vet what enters your project. Vulkro analyzes the code you write.