#supply-chain

Pre-install risk gate for npm packages. Stops AI coding agents from running malicious or typosquatted packages before lifecycle scripts run.

A reference implementation of the SchemaPin protocol for cryptographically signing and verifying AI agent tool schemas to prevent supply-chain attacks.

TEOS MCP is an MCP server that performs real-time diff-level security scanning for AI agents and CI/CD pipelines. It analyzes code diffs before merge or deployment and returns a deterministic gate decision: ALLOW WARN BLOCK Built for: • AI agents • Autonomous systems • DevSecOps teams • CI/CD workflows Features: • Diff risk scoring • Deterministic merge gate • Real-time enforcement • Usage-based monetization (pay-per-scan) • Optional on-chain verification Unlike gateway filters, TEOS MCP performs code-level intelligence before execution.

Open-source MCP server for logistics. Runs inside your security perimeter — connects to TMS, ERP, email, and documents. Gives AI agents deep context about shipments, carriers, rates, and routes without data leaving your infrastructure.

Scan MCP servers for security risks before your AI agent trusts them. Detects prompt injection, supply chain attacks (including the LiteLLM 1.82.7/1.82.8 backdoor), excessive permissions, arbitrary code execution, typosquatting, and tool shadowing. Add to your .mcp.json and let your agent audit its own tools with tooltrust_scan_config.

LiveDataLink is a hosted MCP server giving AI agents 182 real-time data tools across 36 domains through a single Streamable HTTP endpoint. Coverage includes sanctions screening (OFAC + UN + EU + BIS DPL first-party indexed), SEC EDGAR, federal courts plus Caselaw Access Project, IRS nonprofits, NPPES healthcare providers, USAspending federal awards, Federal Register + eCFR regulations, CVE + threat intel (RDAP, IP reputation, FBI Wanted, CISA KEV), FRED + BLS + US Treasury + World Bank macro, EIA + NREL energy, Zillow real estate, Texas parcels, ClinicalTrials.gov, FDA, EPA, FEC, FMCSA trucking, USPTO patents, Census, federal recreation (RIDB), Project Gutenberg books, OpenAlex scholarly, NPM + PyPI + cargo + GitHub supply-chain intel, and more. One bearer token, one endpoint, one bill. Built for compliance + due diligence + agentic research workflows. Free tier (100 queries/month, no credit card) available at https://livedatalink.ai/signup/free. Paid plans from $10/month. Open MCP protocol, portable keys, no lock-in. Operated by Blackbox Foundry LLC out of Texas.