advance-fraud-analyst
Verified Safeby Johnza06
Overview
The application provides a web-based interface for fraud detection and risk analysis across multiple data types (transactions, KYC, sanctions, credit risk) using rule-based engines and an AI consultant agent powered by Large Language Models.
Installation
python app.pyEnvironment Variables
- FIREWORKS_API_KEY
- HF_TOKEN
- ENABLE_MCP
- MCP_SANCTIONS_URL
- MCP_HIGH_RISK_MCC_URL
- MCP_AUTH_HEADER
- TTP_BLOCK_LEVEL
Security Notes
The application handles secrets (API keys) via environment variables, which is good practice. It includes a TTP (Tactics, Techniques, and Procedures) Guard to detect prompt injections and other adversarial inputs, enhancing security. External calls to LLM providers and optional MCP endpoints are made over HTTPS with timeouts. No 'eval' or direct code injection vulnerabilities were identified. Potential minor risk if MCP URLs are misconfigured to untrusted endpoints, but these are controlled by environment variables.
Similar Servers
aleph
Aleph is an MCP server that provides LLMs programmatic access to gigabytes of local data without consuming context, implementing the Recursive Language Model (RLM) architecture.
pentestMCP
This MCP server enables AI agents to perform automated and interactive penetration testing tasks by exposing a suite of security assessment utilities as callable tools.
tableau_mcp_starter_kit
Provides a powerful AI integration for Tableau Server/Cloud, enabling natural language querying and interaction with Tableau data via a web interface or dashboard extension.
AgentStack
A versatile backend for hosting and orchestrating multiple specialized AI agents and workflows within the Mastra framework, facilitating agent-to-agent (A2A) coordination, code-centric development tasks, knowledge management (notes), and integration with various external services. It supports evaluation of agent performance and policy-driven access control.