silk kiln
Two commands to install:
brew install luckyPipewrench/tap/pipelock
pipelock cursor install
Hooks into Cursor's stdin/stdout and scans every tool call in real time. Catches:
- Secret exfiltration in shell commands and MCP tool args (35 DLP patterns)
- Prompt injection relay through agent actions
- Destructive operations (rm -rf, force push, etc.)
- Credential file access (.ssh/id_rsa, .aws/credentials, .env)
Also works as a reverse proxy for MCP servers with SSRF protection, tool poisoning detection, and chain detection for multi-step attacks.
4,000+ tests, 412 pen test cases, 95% coverage. OpenSSF Scorecard 8.7/10. Open source.
crisp nest
worldly steeple