Discussion - Topic: Agent Scan
Details
This week's topic: Agent Scan
Discussion resources to help guide the conversation will be posted below a few days before the meetup.
Zoom link will be added about 5 min before the event starts.
As described in Thoughtworks Technology Radar Vol. #34.
Agent Scan is a security scanner for agent ecosystems that discovers local components, including MCP servers and skills, and flags risks such as prompt injection, tool poisoning, toxic flows, hardcoded secrets and unsafe credential handling. It addresses an emerging gap in agent supply chain visibility and provides a practical way to inventory and test rapidly growing agent surfaces. However, adoption should be deliberate. This is for several reasons: Scans require sharing component metadata with Snyk APIs, and signal quality and false-positive rates require validation in your environment. It’s important that teams confirm the operational value of Agent Scan before making it part of mandatory delivery gates.
Discussion Resources :
Will be added a few days before the event.