# AI-Infra-Guard > A full-stack AI Red Teaming platform securing AI ecosystems via OpenClaw Security Scan, Agent Scan, Skills Scan, MCP scan, AI Infra scan and LLM jailbreak evaluation. - **URL**: https://www.freshcrate.ai/projects/AI-Infra-Guard - **Author**: Tencent - **Category**: MCP Servers - **Latest version**: `v4.1.11` (2026-06-04) - **License**: Apache-2.0 - **Source**: https://github.com/Tencent/AI-Infra-Guard - **Homepage**: https://tencent.github.io/AI-Infra-Guard/ - **Language**: Python - **GitHub**: 3,521 stars, 352 forks - **Registry**: github - **Tags**: `agent`, `agent-security`, `ai-infra`, `ai-red-teaming`, `ai-security`, `llm`, `llm-evaluation`, `llm-jailbreak`, `python` ## Description A full-stack AI Red Teaming platform securing AI ecosystems via OpenClaw Security Scan, Agent Scan, Skills Scan, MCP scan, AI Infra scan and LLM jailbreak evaluation. ## Recent releases | Version | Date | Urgency | Changes | | --- | --- | --- | --- | | `v4.1.11` | 2026-06-04 | High | ## [v4.1.11] - 2026-06-04 ### Changed - **Docs**: Add Wuhan University and Unicom Digital Tech logos to all READMEs (3af7f63) - **Docs**: Add v4.1.10 to What's New across all 9 README languages (5e0a6f4) ### Contributors Special thanks to @aigsec, @jucie-pie, @aig-doc-bot --- | | `v4.1.10` | 2026-05-28 | High | ## [v4.1.10] - 2026-05-28 ### Added - **Data**: Add CVE rules and fingerprints for new targets (junoclaw, lollms, sglang) (6054e45) - **Scan**: Support WebSocket agent providers (2c845e8) ### Fixed - **Scan**: Resolve uv run failures in Docker and improve dify version detection (23f098a) - **Chromium**: Add defer Close() to prevent zombie processes (b617bf7) - **Data**: Correct sglang fingerprint YAML structure (version as top-level key) (653cc9a) ### Changed - **Docs**: Add v4.1.9 to What's | | `v4.1.9` | 2026-05-21 | High | ## [v4.1.9] - 2026-05-21 ### Added - **Prompt Security**: Add 20+ single-turn attack operators (invisible-text, case-formatting, script-system, unicode-style, classical-cipher, classic-encoding, SystemOverride, SuperUser, LinguisticConfusion, Roleplay, PromptProbing, PromptInjection, PROMISQROUTE, PermissionEscalation, Multilingual, MathProblem, InputBypass, ICRTJailbreak, GrayBox, GoalRedirection, EquaCode, ContextPoisoning) (fbac88b..14a3d01) - **Prompt Security**: Add 6 multi-turn attack ope | | `v4.1.8` | 2026-05-14 | High | ## [v4.1.8] - 2026-05-14 ### Fixed - **Tools**: Make tool name lookup case-insensitive (2e76c7d) - **Vuln Rules**: Remove 143 duplicate GHSA files that have corresponding CVE references (bf06029) - **Vuln Rules**: Remove invalid fingerprints (chatgpt-mcp-server/pptagent), fix GHSA-9p3r YAML format (8a19ff8) - **Vuln Rules**: Restore GHSA files added upstream after base commit (6cdecfd) ### Changed - **Docs**: Add invitation code application link to all README files (08c356a) - **Docs**: Add 1 | | `v4.1.7` | 2026-04-30 | High | ## [v4.1.7] - 2026-04-30 ### Changed - **Docs**: Update README What's New section with v4.1.6 highlights, update component count (57→58) and vulnerability stats across all 9 README languages (75946d1) - **Users**: Update user list (7c2a7f1) ### Contributors Special thanks to @jucie-pie, @aigsec, @aig-doc-bot --- | | `v4.1.6` | 2026-04-23 | High | ## [v4.1.6] - 2026-04-23 ### Added - **Docker**: Add git to runtime dependencies in Dockerfile (69f7430) - **Vuln Rules**: Add AIG vulnerability rules [2026-04-23] (#350) - **Vuln Rules**: Detect exposed AI agent config files (claude_desktop_config.json, mcp.json, etc.) (#340) - **Vuln Rules**: Add Trae IDE and CodeBuddy MCP config paths, extend .env key patterns - **Data Sync**: Replace zip download with git clone, remove github_token dependency (#327) - **Manual Updates**: Support manual upda | | `v4.1.5` | 2026-04-23 | High | ## [v4.1.5] - 2026-04-23 ### Added - **Agent Scan**: Add jailbreak detection support and implement ModelJailbreak task (45d171b) - **Vuln Rules**: Detect exposed AI agent config files (claude_desktop_config.json, mcp.json, etc.) (18049bc) - **Vuln Rules**: Add Trae IDE and CodeBuddy MCP config paths, extend .env key patterns (59f4bd9) - **Data Sync**: Replace zip download with git clone, remove github_token dependency (b7ce189) - **Manual Updates**: Support manual updates to the latest jailbrea | | `v4.1.4` | 2026-04-17 | High | ## [v4.1.4] - 2026-04-17 ### Security - **TLS**: Support HTTPS connections with self-signed/private CA certificates for model endpoints; add InsecureSkipVerify option (#306, closes #302) ### Added - **MCP Scan**: Add multi-turn red team attack module with TAP and Crescendo strategies (#299) - **System API**: Add data auto-sync API (`POST /api/v1/system/update-data`, `GET /api/v1/system/update-status`) for syncing `data/` directory (#301) - **Agent Scan API**: Support inline `agent_config` in a | | `v4.1.3` | 2026-04-09 | High | ## [v4.1.3] - 2026-04-09 ### Fixed - **Fingerprint**: Add version extractor to OpenClaw fingerprint for accurate version detection (#286) - **MCP Scan**: Harden agent loop and path validation, clean up config (#282) ### Changed - **Vulnerability Rules**: Remove duplicate GHSA files already covered by CVE entries (OpenClaw dedup) ### Documentation - Add quick usage guide with concrete scan target examples (issue #281) - Sync env.example context window vars, update install and test commands for | | `v4.1.2` | 2026-04-03 | Medium | ## [v4.1.2] - 2026-04-03 ### Fixed - **Task Control**: Added support for stopping running tasks, allowing users to actively terminate scans in progress - **AI Infra Scan**: Fixed a bug where the "No Model" option could not be selected in AI infrastructure scan task configuration, preventing users from creating model-free scan tasks - **AI Infra Scan**: Fixed double-dot filename bug in scan file upload that caused certain filenames to be incorrectly rejected - **AI Infra Scan**: Fixed concurrent | ## Dependency audit - **Score**: 28/100 - **Total deps**: 26 - **Resolved**: 0 - **Unresolved**: 26 - **License conflicts**: 0 - **Warnings**: 26 - **Scanned**: 2026-04-27 ## Citation - HTML: https://www.freshcrate.ai/projects/AI-Infra-Guard - Markdown: https://www.freshcrate.ai/projects/AI-Infra-Guard.md - Dependencies JSON: https://www.freshcrate.ai/api/projects/AI-Infra-Guard/deps _Generated by freshcrate.ai. Indexes github releases for AI-agent ecosystem packages._