<h1 align="center"><img vertical-align="middle" width="400px" src="https://github.com/Tencent/AI-Infra-Guard/raw/v4.1.15/img/logo-full-new.png" alt="A.I.G"/></h1>
📖 Documentation | 🌐 🇨🇳 中文 · 🇯🇵 日本語 · 🇪🇸 Español · 🇩🇪 Deutsch · 🇫🇷 Français · 🇰🇷 한국어 · 🇧🇷 Português · 🇷🇺 Русский
<a href="https://github.com/tencent/AI-Infra-Guard/stargazers">
<img src="https://img.shields.io/github/stars/tencent/AI-Infra-Guard?style=social" alt="GitHub stars">
</a>
<a href="https://github.com/Tencent/AI-Infra-Guard">
<img alt="GitHub downloads" src="https://img.shields.io/github/downloads/Tencent/AI-Infra-Guard/total">
</a>
<a href="https://github.com/Tencent/AI-Infra-Guard">
<img alt="docker pulls" src="https://img.shields.io/docker/pulls/zhuquelab/aig-server.svg?color=gold">
</a>
<a href="https://github.com/Tencent/AI-Infra-Guard">
<img alt="Release" src="https://img.shields.io/github/v/release/Tencent/AI-Infra-Guard?color=green">
</a>
<a href="https://deepwiki.com/Tencent/AI-Infra-Guard">
<img src="https://deepwiki.com/badge.svg" alt="Ask DeepWiki">
</a>
<a href="https://clawhub.ai/aigsec/edgeone-clawscan" target="_blank">
<img src="https://img.shields.io/badge/ClawHub-EdgeOne%20ClawScan-a870dc" alt="EdgeOne ClawScan">
</a>
<a href="https://clawhub.ai/aigsec/edgeone-skill-scanner" target="_blank">
<img src="https://img.shields.io/badge/ClawHub-EdgeOne%20Skill%20Scanner-2ea44f" alt="EdgeOne Skill Scanner">
</a>
<a href="https://clawhub.ai/aigsec/aig-scanner" target="_blank">
<img src="https://img.shields.io/badge/ClawHub-AIG%20Scanner-e6a817" alt="AIG Scanner">
</a>
<h2 align="center">🚀 AI Red Teaming Platform by Tencent Zhuque Lab</h2>
A.I.G (AI-Infra-Guard) integrates capabilities such as ClawScan(OpenClaw Security Scan), Agent Scan,AI infra vulnerability scan, MCP Server & Agent Skills scan, and Jailbreak Evaluation, aiming to provide users with the most comprehensive, intelligent, and user-friendly solution for AI security risk self-examination.
We are committed to making A.I.G(AI-Infra-Guard) the industry-leading AI red teaming platform. More stars help this project reach a wider audience, attracting more developers to contribute, which accelerates iteration and improvement. Your star is crucial to us!
Help us improve A.I.G! Please take 3-5 minutes to fill out our User Feedback Survey. Users who provide high-quality feedback and leave a valid email address will receive an exclusive Tencent souvenir gift.
aig-agent-redteam skill for comprehensive Agent red-team assessment.edgeone-clawscan, edgeone-skill-scanner, aig-scanner) + manual task stop.👉 CHANGELOG · 🩺 Try EdgeOne ClawScan
| Docker | RAM | Disk Space |
|---|---|---|
| 20.10 or higher | 4GB+ | 10GB+ |
# This method pulls pre-built images from Docker Hub for a faster start
git clone https://github.com/Tencent/AI-Infra-Guard.git
cd AI-Infra-Guard
# For Docker Compose V2+, replace 'docker-compose' with 'docker compose'
docker-compose -f docker-compose.images.yml up -d
Once the service is running, you can access the A.I.G web interface at:
http://localhost:8088
You can also call A.I.G directly from OpenClaw chat via the aig-scanner skill.
clawhub install aig-scanner
Then configure AIG_BASE_URL to point to your running A.I.G service.
For more details, see the aig-scanner README.
📦 More installation options
Method 2: One-Click Install Script (Recommended)
# This method will automatically install Docker and launch A.I.G with one command
curl https://raw.githubusercontent.com/Tencent/AI-Infra-Guard/refs/heads/main/docker.sh | bash
Method 3: Build and run from source
git clone https://github.com/Tencent/AI-Infra-Guard.git
cd AI-Infra-Guard
# This method builds a Docker image from local source code and starts the service
# (For Docker Compose V2+, replace 'docker-compose' with 'docker compose')
docker-compose up -d
Note: The AI-Infra-Guard project is positioned as an AI red teaming platform for internal use by enterprises or individuals. It currently lacks an authentication mechanism and should not be deployed on public networks.
For more information, see: https://tencent.github.io/AI-Infra-Guard/?menu=getting-started
Experience the Pro version with advanced features and improved performance. The Pro version requires an invitation code and is prioritized for contributors who have submitted issues, pull requests, or discussions, or actively help grow the community. Visit: https://aigsec.ai/.
| Feature | More Info |
|---|---|
| ClawScan(OpenClaw Security Scan) | Supports one-click evaluation of OpenClaw security risks. It detects insecure configurations, Skill risks, CVE vulnerabilities, and privacy leakage. |
| Agent Scan | This is an independent, multi-agent automated scanning framework. It is designed to evaluate the security of AI agent workflows. It seamlessly supports agents running across various platforms, including Dify and Coze. |
| MCP Server & Agent Skills scan | It thoroughly detects 14 major categories of security risks. The detection applies to both MCP Servers and Agent Skills. It flexibly supports scanning from both source code and remote URLs. |
| AI infra vulnerability scan | This scanner precisely identifies over 100 AI framework components. It covers more than 1600 known CVE vulnerabilities. Supported frameworks include Ollama, ComfyUI, vLLM, n8n, Triton Inference Server and more. |
| Jailbreak Evaluation | It assesses prompt security risks using carefully curated datasets. The evaluation applies multiple attack methods to test robustness. It also provides detailed cross-model comparison capabilities. |
💎 Additional Benefits


After deployment, open
http://localhost:8088in your browser.
What to enter as the target URL / IP?
The target is the network address of a running AI service you want to scan - not a GitHub URL or source code path. A.I.G connects to the live service and fingerprints it for known CVE vulnerabilities.
| Scenario | Example target |
|---|---|
| A locally running vLLM instance | http://127.0.0.1:8000 |
| An Ollama server on your LAN | http://192.168.1.100:11434 |
| A ComfyUI instance exposed internally | http://10.0.0.5:8188 |
| Multiple hosts (one per line) | 192.168.1.0/24 (CIDR), 10.0.0.1-10.0.0.20 (range) |
Step-by-step: Scan a local vLLM instance
python -m vllm.entrypoints.api_server --model meta-llama/...)http://127.0.0.1:8000 (or the IP/port where vLLM is listening)💡 Tip: To scan the nightly build of vLLM specifically, just run that nightly build and point A.I.G at its address. The scanner detects the version automatically.
Enter either a remote URL (e.g. https://github.com/user/mcp-server) or upload a local source archive - no running instance required.
Configure the target LLM's API endpoint (base URL + API key) in Settings → Model Config, then select a dataset and start the evaluation.
Visit our online documentation: [https://tencent.github.io/AI-Infra-Guard/](https://te
$ claude mcp add AI-Infra-Guard \
-- python -m otcore.mcp_server <graph>