Olivia
Online
Invariant Labs
@InvariantLabsAI
Invariant Labs makes AI Agents secure and reliable.
Joined July 2024
28 Following
646 Followers
117 Posts
@snyksec Announcement: https://t.co/YJHrI7s38t
We’re thrilled to officially join forces with @snyksec!
Together, we’re changing the landscape of the agentic AI future. More to come!
😈 BEWARE: Claude 4 + GitHub MCP will leak your private GitHub repositories, no questions asked.
We discovered a new attack on agents using GitHub’s official MCP server, which can be exploited by attackers to access your private repositories.
creds to @marco_milanta
(1/n) 👇
Invariant researchers have uncovered a new security flaw in GitHub’s official MCP server, enabling attackers to exfiltrate private repository data.
The toxic flow was identified during an automated scan using Invariant's security stack.
Learn more: https://t.co/q4MYet1Z4D
🔵 New release: Invariant MCP-scan v0.2 is here!
Track, audit & secure all local MCP traffic with static+dynamic scanning, local guardrails, and customizable policies.
Ideal for orgs prioritizing agent security & compliance.
Docs: https://t.co/WrWwk4KTOL
#AI #DevSecOps
MCP-scan: https://t.co/B7fbdBlCBH
🛡️ We are thrilled to partner with @SmitheryDotAi to protect their MCP servers with Invariant MCP-scan.
Also, a lot of features will be dropping in MCP-scan soon!
Blog post: https://t.co/8UUb4PrqsA
MCP is the hottest thing in AI right now, but people aren't really talking about the security implications...
I covered a recently discovered exploit and mitigations on the @thenewstack today:
https://t.co/2U7J8WcHnD
We recently shipped a lot of updates to mcp-scan:
- whitelisting of tools
- Improvements to the server (reducing false-positives, improving detection)
- run via npm/npx
Much more coming soon!
https://t.co/frHJtsELrO
#mcp
For more details on Invariant Guardrails, check out our blog post: https://t.co/DsDGanbNFh
🛡️ We just released Invariant Guardrails — a contextual guardrail system for agents and MCP-powered AI applications.
Open source & easy to deploy.
🧵
Invariant Guardrails, Gateway, and Explorer are all open-source.
https://t.co/IU8HzKvrIJ
Check them out! We would love some feedback.
🔴🌎 New MCP attack on BrowserMCP
We show an MCP attack on the popular BrowserMCP.
It allows attackers to read arbitrary files from your machine, when the agent visits the website below.
Try yourself with: https://t.co/q7EalhASmZ
No bad MCP server needed.
(1/n)👇
A small disclaimer: We use Invariant Guardrails server-side via an API, and we are collecting tool names and descriptions for security research purposes (not your user data!). Don't use it if you don't want to share your tools.
After covering MCP vulnerabilities over the last few days, today, we are launching MCP-scan, a security scanner to detect MCP attacks.
Run it now: uvx mcp-scan@latest
🧵
For more details, check out our full blog post on MCP-Scan: https://t.co/xVihAWuLwz
Most Popular Users
Elon Musk 
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.3M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers