INSTALLATION_AND_USAGE.md

Signal Sentinel Scanner - Installation and Usage Guide

Version: 2.3.0
Last Updated: 2026-04-18
Repository: https://github.com/SignalCoding/signal-sentinel-scanner

---

Table of Contents

1. Installation Options
2. .NET Tool Installation
3. Docker Installation
4. Quick Start
5. Command Reference
6. Usage Examples
7. Output Formats
8. CI/CD Integration
9. Troubleshooting

---

Installation Options

Signal Sentinel Scanner is available in two formats:

Format	Best For	Prerequisites
.NET Tool	Developers with .NET installed	.NET 10 SDK or later
Docker	CI/CD pipelines, any environment	Docker

---

.NET Tool Installation

Prerequisites

• .NET 10 SDK or later
• Windows, macOS, or Linux

Install

dotnet tool install -g SignalSentinel.Scanner

Verify Installation

sentinel-scan --version

Expected output:

Signal Sentinel Scanner v2.3.0

Update

dotnet tool update -g SignalSentinel.Scanner

Uninstall

dotnet tool uninstall -g SignalSentinel.Scanner

NuGet Package Details

Package	NuGet URL
SignalSentinel.Scanner	https://www.nuget.org/packages/SignalSentinel.Scanner
SignalSentinel.Core	https://www.nuget.org/packages/SignalSentinel.Core

---

Docker Installation

Prerequisites

• Docker installed and running

Pull the Image

docker pull ghcr.io/signalcoding/signal-sentinel-scanner:2.3.0

Available Tags

Tag	Description
2.3.0	Specific version (recommended for CI/CD)
2.2	Latest 2.2.x patch version
2	Latest 2.x.x version
latest	Latest stable release

Verify Installation

docker run --rm ghcr.io/signalcoding/signal-sentinel-scanner:2.3.0 --version

Image Details

Property	Value
Registry	GitHub Container Registry (ghcr.io)
Image	ghcr.io/signalcoding/signal-sentinel-scanner:2.3.0
Base	Alpine Linux (.NET runtime-deps)
Architecture	linux/amd64, linux/arm64
User	Non-root (sentinel, uid 1000)
Size	~50MB compressed

---

Quick Start

Auto-Discover and Scan (Recommended)

The scanner can automatically find MCP configurations and Agent Skills from popular applications:

.NET Tool:

# Auto-discover MCP configurations
sentinel-scan --discover

# Auto-discover Agent Skills
sentinel-scan --skills

# Scan both MCP and Skills
sentinel-scan --discover --skills

# Scan a specific skill directory
sentinel-scan --skills ~/.claude/skills/

Docker:

# Mount user config directories for auto-discovery
docker run --rm \
  -v "$HOME/.cursor:/home/sentinel/.cursor:ro" \
  -v "$HOME/.config:/home/sentinel/.config:ro" \
  ghcr.io/signalcoding/signal-sentinel-scanner:2.3.0 --discover --skills

Windows Docker:

docker run --rm `
  -v "$env:USERPROFILE\.cursor:/home/sentinel/.cursor:ro" `
  -v "$env:APPDATA:/home/sentinel/AppData/Roaming:ro" `
  ghcr.io/signalcoding/signal-sentinel-scanner:2.3.0 --discover --skills

Scan a Specific Config File

.NET Tool:

sentinel-scan --config ~/.cursor/mcp.json

Docker:

docker run --rm \
  -v "$HOME/.cursor/mcp.json:/config/mcp.json:ro" \
  ghcr.io/signalcoding/signal-sentinel-scanner:2.3.0 --config /config/mcp.json

Scan a Remote MCP Server

.NET Tool:

sentinel-scan --remote https://mcp.example.com/sse

Docker:

docker run --rm ghcr.io/signalcoding/signal-sentinel-scanner:2.3.0 \
  --remote https://mcp.example.com/sse

---

Command Reference

Synopsis

sentinel-scan [OPTIONS]

Options

Option	Short	Description	Default
--config <path>	-c	Path to MCP configuration file	-
--remote <url>	-r	Remote MCP server URL (http/https/ws/wss)	-
--discover	-d	Auto-discover MCP configurations	-
--skills [path]	-s	Scan Agent Skills (auto-discover or specify path)	-
--format <format>	-f	Output format: json, markdown, html, sarif	markdown
--output <path>	-o	Output file path	stdout
--baseline <path>	-	Compare against baseline file (creates if missing) (v2.2)	-
--update-baseline	-	Regenerate baseline file from current scan (v2.2)	false
--offline	-	Enforce zero network egress (refuses --remote) (v2.2)	false
--sigma-rules <path>	-	Load Sigma YAML rules from a file or directory (v2.2)	-
--ci	-	CI mode - exit code 1 on critical/high findings	false
--verbose	-v	Enable verbose output	false
--timeout <seconds>	-t	Connection timeout (max: 300)	30
--help	-h	Show help message	-
--version	-	Show version information	-

Exit Codes

Code	Meaning
0	Scan completed successfully (no critical/high findings in CI mode)
1	Critical or high severity findings detected (CI mode only)
2	Scan failed (connection error, invalid config, etc.)

---

Usage Examples

Generate HTML Report

.NET Tool:

sentinel-scan --discover --format html --output security-report.html

Docker:

docker run --rm \
  -v "$HOME/.cursor:/home/sentinel/.cursor:ro" \
  -v "$(pwd):/output" \
  ghcr.io/signalcoding/signal-sentinel-scanner:2.3.0 \
  --discover --skills --format html --output /output/security-report.html

Generate JSON for Processing

sentinel-scan --discover --format json --output results.json

Verbose Scan with Timeout

sentinel-scan --discover --verbose --timeout 60

Scan Multiple Sources

# Scan local config and remote server
sentinel-scan --config ./mcp-config.json --remote https://mcp.example.com/sse

---

Output Formats

Markdown (Default)

Best for terminal output and documentation.

sentinel-scan --discover --format markdown

JSON

Best for CI/CD pipelines and programmatic processing.

sentinel-scan --discover --format json

Sample JSON structure:

{
  "scanDate": "2026-04-04T08:00:00Z",
  "scannerVersion": "2.3.0",
  "grade": "B",
  "score": 85,
  "summary": {
    "serversScanned": 2,
    "totalTools": 15,
    "criticalFindings": 0,
    "highFindings": 1,
    "mediumFindings": 3
  },
  "findings": [...],
  "owaspCompliance": {...}
}

HTML

Best for reports and sharing with stakeholders.

sentinel-scan --discover --format html --output report.html

Features:

• Signal Coding branding
• Colour-coded severity badges
• OWASP compliance matrix
• Responsive design
• Print-friendly

SARIF v2.1.0 (new in v2.2)

OASIS-standard Static Analysis Results Interchange Format, compatible with GitHub Code Scanning, Azure DevOps, and most IDE security extensions.

sentinel-scan --discover --format sarif --output results.sarif

Upload to GitHub Code Scanning:

- name: Upload SARIF
  uses: github/codeql-action/upload-sarif@v3
  with:
    sarif_file: results.sarif

---

v2.2 Workflows

Baseline / Rug Pull Detection (SS-022)

A baseline captures the schema hash of every tool on every server. Later scans compare against it to flag mutations, additions, and removals.

# First run - creates baseline if missing
sentinel-scan --discover --baseline .sentinel-baseline.json

# Subsequent runs - compare against baseline (same command)
sentinel-scan --discover --baseline .sentinel-baseline.json

# Explicitly refresh the baseline (after an approved change)
sentinel-scan --discover --baseline .sentinel-baseline.json --update-baseline

Findings produced by rug-pull detection:

• Critical - Tool description or schema has mutated since baseline
• High - A new tool has appeared that was not in the baseline
• Medium - A tool present in the baseline has been removed

Offline / Air-gapped Scanning

For defence, HMG, or any environment that mandates zero network egress:

sentinel-scan --discover --skills --offline

When --offline is active, any attempt to initiate an HTTP or WebSocket connection will throw an OfflineViolationException. Combining --offline with --remote is rejected at argument parsing time.

Sigma Rule Import

Load community or internal Sigma YAML rules alongside Signal Sentinel's built-in rules:

sentinel-scan --discover --sigma-rules ./sigma-rules/
sentinel-scan --discover --sigma-rules ./detections/aws-key-leak.yml

Supported Sigma subset: title, id, description, level, tags, logsource.product (mcp / skill), and detection (contains, startswith, endswith, equals).

---

CI/CD Integration

GitHub Actions

name: MCP Security Scan

on:
  push:
    paths:
      - 'mcp-config.json'
      - '.cursor/mcp.json'

jobs:
  security-scan:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v4
      
      - name: Setup .NET
        uses: actions/setup-dotnet@v4
        with:
          dotnet-version: '10.0.x'
      
      - name: Install Signal Sentinel
        run: dotnet tool install -g SignalSentinel.Scanner
      
      - name: Run Security Scan
        run: sentinel-scan --config ./mcp-config.json --ci --format json --output scan-results.json
      
      - name: Upload Results
        uses: actions/upload-artifact@v4
        if: always()
        with:
          name: security-scan-results
          path: scan-results.json

GitHub Actions (Docker)

name: MCP Security Scan

on: [push]

jobs:
  security-scan:
    runs-on: ubuntu-latest
    container:
      image: ghcr.io/signalcoding/signal-sentinel-scanner:2.3.0
    steps:
      - uses: actions/checkout@v4
      
      - name: Run Security Scan
        run: sentinel-scan --config ./mcp-config.json --ci --format json

Azure DevOps

trigger:
  paths:
    include:
      - 'mcp-config.json'

pool:
  vmImage: 'ubuntu-latest'

steps:
  - task: UseDotNet@2
    inputs:
      version: '10.0.x'
  
  - script: dotnet tool install -g SignalSentinel.Scanner
    displayName: 'Install Signal Sentinel'
  
  - script: sentinel-scan --config ./mcp-config.json --ci --format json
    displayName: 'Run MCP Security Scan'

GitLab CI

mcp-security-scan:
  image: ghcr.io/signalcoding/signal-sentinel-scanner:2.3.0
  script:
    - sentinel-scan --config ./mcp-config.json --ci --format json --output gl-sast-report.json
  artifacts:
    reports:
      sast: gl-sast-report.json

Jenkins (Declarative Pipeline)

pipeline {
    agent any
    
    stages {
        stage('MCP Security Scan') {
            steps {
                sh 'dotnet tool install -g SignalSentinel.Scanner || true'
                sh 'sentinel-scan --config ./mcp-config.json --ci --format html --output mcp-security-report.html'
            }
            post {
                always {
                    archiveArtifacts artifacts: 'mcp-security-report.html'
                    publishHTML([
                        reportName: 'MCP Security Report',
                        reportDir: '.',
                        reportFiles: 'mcp-security-report.html'
                    ])
                }
            }
        }
    }
}

---

Supported Applications

Signal Sentinel auto-discovers MCP configurations and Agent Skills from:

Application	MCP Configs	Agent Skills	Config Location (macOS/Linux)
Claude Desktop	✅	-	~/Library/Application Support/Claude/claude_desktop_config.json
Claude Code	-	✅	~/.claude/skills/
Cursor	✅	✅	~/.cursor/mcp.json, ~/.cursor/skills/
VS Code	✅	-	~/.config/Code/User/settings.json
Windsurf	✅	✅	~/.windsurf/mcp.json, ~/.windsurf/skills/
Zed	✅	-	~/.config/zed/settings.json
OpenAI Codex CLI	-	✅	~/.codex/skills/

---

Security Rules

Signal Sentinel scans for OWASP Agentic AI Top 10 + OWASP MCP Top 10 vulnerabilities with 25 rules:

MCP Rules

Rule	OWASP Code	Description
SS-001	ASI01	Tool Poisoning Detection
SS-002	ASI02	Overbroad Permissions
SS-003	ASI03	Missing Authentication
SS-004	ASI04	Supply Chain Vulnerabilities
SS-005	ASI05	Code Execution Detection
SS-006	ASI06	Memory/Context Write Access
SS-007	ASI07	Inter-Agent Communication
SS-008	ASI09	Sensitive Data Access
SS-009	ASI01	Excessive Description Length
SS-010	ASI02	Cross-Server Attack Paths
SS-019	ASI03	Credential Hygiene Check
SS-020	ASI03	OAuth 2.1 Compliance Check
SS-021	ASI04	Package Provenance Check
SS-022	ASI01	Rug Pull Detection / Schema Mutation (v2.2)
SS-023	ASI01	Shadow Tool Injection / Typosquat (v2.2)
SS-025	ASI06	Excessive Tool Response Size (v2.2)

Skill Rules

Rule	OWASP Code	Description
SS-011	ASI01	Skill Prompt Injection Detection
SS-012	ASI02	Skill Scope Violation Detection
SS-013	ASI03	Skill Credential Access Detection
SS-014	ASI09	Skill Data Exfiltration Detection
SS-015	ASI01	Skill Obfuscation Detection
SS-016	ASI05	Skill Script Payload Detection
SS-017	ASI02	Skill Excessive Permissions Detection
SS-018	ASI01	Skill Hidden Content Detection
SS-024	ASI04	Skill Integrity Verification (v2.2)

---

Grading System

Grade	Score	Description
A	90-100	Excellent - No critical or high findings
B	80-89	Good - Minor issues only
C	70-79	Adequate - Some medium findings
D	60-69	Poor - High severity findings present
F	0-59	Failing - Critical issues detected

---

Troubleshooting

"No MCP configurations found"

Cause: No config files found in standard locations.

Solutions:

1. Use --config to specify the config file path directly
2. Use --remote to scan a remote MCP server
3. Check that your MCP application has servers configured

Connection timeout

Cause: MCP server not responding within timeout period.

Solution: Increase timeout with --timeout:

sentinel-scan --remote https://slow-server.com/mcp --timeout 120

Docker permission denied

Cause: Config files not accessible to container.

Solution: Mount volumes with read-only access:

docker run --rm \
  -v "/path/to/config:/config:ro" \
  ghcr.io/signalcoding/signal-sentinel-scanner:2.3.0 --config /config/mcp.json

"Tool not found" after installation

Cause: .NET tools directory not in PATH.

Solution:

# Add to PATH (Linux/macOS)
export PATH="$PATH:$HOME/.dotnet/tools"

# Add to PATH (Windows PowerShell)
$env:PATH += ";$env:USERPROFILE\.dotnet\tools"

---

Support

• Documentation: https://github.com/SignalCoding/signal-sentinel-scanner#readme
• Issues: https://github.com/SignalCoding/signal-sentinel-scanner/issues
• Security Issues: security@signalcoding.co.uk

---

License

Apache 2.0 - Copyright 2026 Signal Coding Limited

---

Document generated for Signal Sentinel Scanner v2.3.0