Prisma AIRS protects your AI agents from supply chain attacks by adding support for
Model Context Protocol (MCP) tools. This feature adds security scanning capabilities
to the MCP ecosystem, specifically targeting two critical threats:
- Context poisoning via tool definition, tool input (request) and tool output
(response) manipulation. This prevents malicious actors from tampering with
MCP tool definitions that could trick
AI agents into performing harmful actions like leaking sensitive data or
executing dangerous commands.
- Exposed credentials and identity leakage. This detects and blocks sensitive
data (tokens, credentials, API keys) from being exposed through MCP tool
interactions.
This functionality provides a number of benefits:
- Zero-touch security. No new UI or profile configuration required.
- Comprehensive threat detection. Leverages existing detection services (DLP,
prompt injection, toxic content, etc.).
- Real-time protection. Works with both synchronous and asynchronous scanning
APIs.
- Supply chain security. Validates tool descriptions, inputs and outputs as part
of MCP communication.
It ensures that as AI agents become more powerful and autonomous through MCP tools,
they cannot be weaponized against your organization through compromised or malicious
tools in the MCP ecosystem.
This feature represents a broader initiative to secure AI agents that use MCP for
tool integration, ensuring that MCP-based AI systems remain secure against
manipulation and data exposure attacks. For more information,
Detect MCP Threats.