Add great_cto / AgentShield — 24-rule OWASP LLM Top 10 scanner

[avelikiy]

Adds great_cto / AgentShield under Tools.

What it is

AgentShield is the AI-security scanner built into great-cto. 24 rules across 5 OWASP LLM Top 10 categories:

Category	Rules	Examples
prompt-injection	5	User input concatenated into system prompt template literals; eval of model output; tool definitions with user-controlled URLs/paths
secrets-in-prompts	4	Hardcoded API key in prompt; DB connection string in prompt; .env file content piped into prompt
ssrf-in-tools	4	Tool fetches URL parameter without allowlist; tool reads file at user-supplied path; tool exec/spawn with user-controlled command
rag-poisoning	5	Retrieved chunks concatenated into system prompt; user input directly used as RAG ingest
cost-runaway	6	LLM call inside unbounded loop; public endpoint calls LLM without rate-limiting; recursive agent call without depth limit

Why include it

• Free, MIT licensed, no signup
• CLI-first — npx great-cto scan ./ works in 5 sec, no SaaS dependency
• SARIF 2.1.0 output — uploads directly to GitHub Code Scanning
• CI integration — great-cto ci is a single-command CI gate with GitHub Actions ::error annotations
• Actively maintained — current v2.5.2, 7 releases in 2 weeks
• Covers 5 categories the other scanners on this list don't fully address: cost-runaway loops, RAG poisoning, SSRF-in-tools, secrets-in-prompts, and structural prompt injection

CI usage

- run: npx great-cto@latest ci ./ --sarif results.sarif
- uses: github/codeql-action/upload-sarif@v3
  with: { sarif_file: results.sarif }

GitHub: https://github.com/avelikiy/great_cto

Summary by CodeRabbit

문서화

• 도구 목록에 새로운 항목을 추가했습니다: AgentShield (OWASP LLM Top 10 스캐너, GitHub 스타 배지 포함)

[coderabbitai]

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: c047581e-ca37-4e52-92f7-a79097e8f223

📥 Commits

Reviewing files that changed from the base of the PR and between c8ae124 and af5aba2.

📒 Files selected for processing (1)

• README.md

📜 Recent review details

🔇 Additional comments (1)

README.md (1)

121-121: 도구 항목 추가가 목적에 잘 부합합니다.

Tools 섹션의 기존 형식(링크 + 한 줄 설명 + stars 배지)과 자연스럽게 맞고, PR 목적(AgentShield 추가)을 정확히 반영했습니다.

---

개요

README.md의 Tools 목록에 AgentShield 항목이 추가되었습니다. 이 항목에는 OWASP LLM Top 10 스캐너에 대한 설명과 GitHub 스타 배지가 포함됩니다.

변경사항

문서 목록 업데이트

계층 / 파일	요약
Tools 목록 항목 README.md	AgentShield (great_cto / AgentShield)가 새로운 도구 항목으로 추가되었습니다. OWASP LLM Top 10 스캐너로 설명되며, 기존 "Agentic Radar" 항목 이후 "## Articles" 섹션 이전에 배치됩니다.

예상 코드 리뷰 난이도

🎯 1 (Trivial) | ⏱️ ~2분

🚥 Pre-merge checks | ✅ 5

✅ Passed checks (5 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title accurately and specifically summarizes the main change: adding AgentShield tool with its key feature (24-rule OWASP LLM Top 10 scanner) to the README's Tools list.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

Warning

⚠️ This pull request might be slop. It has been flagged by CodeRabbit slop detection and should be reviewed carefully.