Luis247911

Mandatory security layer for any Claude Code session or action processing external content like WebFetch, WebSearch, GitHub reads, foreign repo READMEs, fetched PDFs, articles, doc sites, and MCP tool outputs from external services. It protects against prompt injection (output quarantine, injection pattern scan, tool-call injection defense, recursive fetch ban, hidden-Unicode tricks) and PII leaks in URLs.