{"id":"fawdyinc-shellguard","name":"shellguard","af_score":66.5,"security_score":62.0,"reliability_score":35.0,"what_it_does":"ShellGuard is an MCP (Model Context Protocol) server that lets LLM agents connect to remote hosts over SSH and run a restricted, validated set of observation/diagnostic shell commands (optionally provisioning common diagnostic tools and downloading files via SFTP). It is designed to block destructive operations via syntax-level parsing and an allow/deny command model.","best_when":"You want an LLM to perform controlled, read-only style investigations on known hosts with strict command restrictions and clear observability into what is executed.","avoid_when":"You cannot guarantee that SSH credentials, host verification, and command allowlists are properly configured; or you require fully arbitrary command execution.","last_evaluated":"2026-03-30T15:40:55.612237+00:00","has_mcp":true,"has_api":false,"auth_methods":["SSH private key via identity_file","ssh-agent (SSH_AUTH_SOCK)","Default local SSH keys (~/.ssh/id_ed25519, id_ecdsa, id_rsa)"],"has_free_tier":false,"known_gotchas":["Follow-mode commands like `tail -f` may hang; prefer bounded reads (e.g., `tail -n 100`).","Recursive downloads like `wget -r` are blocked; use allowed alternatives.","Stream editing via `sed` may be blocked or restricted to read-only; prefer grep/search for analysis.","Variable expansion behavior is restricted (e.g., `$HOME/file` does not expand).","Provisioning and download tools can be disabled via config/env; agent may need to handle missing tool availability."],"error_quality":null}