Block agent egress, MCP prompt injection, and secret exfiltration before agents touch the open internet with Pipelock
Put an inline firewall and containment layer in front of agent network traffic, tool calls, and MCP traffic before you trust an agent with local secrets.
What it does
Block agent egress, MCP prompt injection, and secret exfiltration before agents touch the open internet with Pipelock
Put an inline firewall and containment layer in front of agent network traffic, tool calls, and MCP traffic before you trust an agent with local secrets.
Prerequisites
Homebrew or Go, terminal, supported agent runtime or IDE integration
Installation
Use the upstream install or setup path that matches your environment:
- brew install luckyPipewrench/tap/pipelock
- docker pull ghcr.io/luckypipewrench/pipelock:latest
- go install github.com/luckyPipewrench/pipelock/cmd/pipelock@latest
- docker run -p 8888:8888 -v ./pipelock.yaml:/config/pipelock.yaml:ro \
Requirements and caveats from upstream:
- pipelock check --url "https://docs.python.org/3/" # allowed
-
Docker
-
From source (requires Go 1.25+)
Basic usage or getting-started notes:
-
Quick Start · What It Does · Docs · Blog · Ask Dosu
-
bash
-
Set up (discovers IDE configs, generates config, verifies detection)
-
Extracted from upstream docs: https://raw.githubusercontent.com/luckyPipewrench/pipelock/HEAD/README.md
Documentation
Source
Capabilities
Install
Quality
deterministic score 0.45 from registry signals: · indexed on github topic:agent-skills · 8 github stars · SKILL.md body (1,543 chars)