Static binaries that AI agents can discover, download, and run autonomously. No SDKs, no dependencies, no containers — just curl, verify, execute.
Agent calls search("s3 encryption") via MCP to find the right scanner.
Agent calls get("kloudle-aws-s3") and receives a ready-to-run command with SHA256 verification.
Agent downloads the ~2MB static binary, verifies the checksum, and executes the security scan.
Each scanner is a self-contained static binary (~2MB). No runtime dependencies, no containers, no SDK installation. Works on any Linux x86_64 host.
kloudle-aws-s3 Bucket encryption, public access blocks, versioning, logging, lifecycle policies
kloudle-aws-iam Root account MFA, stale access keys, password policy compliance
kloudle-aws-ec2 Public SSH access, security group rules, EBS encryption, IMDSv2 enforcement
kloudle-aws-eks Public endpoint access, control plane logging, secrets encryption
kloudle-aws-rds Public accessibility, storage encryption, automated backup retention
kloudle-aws-cloudtrail Multi-region trails, log file validation, KMS encryption
kloudle-aws-cloudwatch-logs Log group retention, encryption at rest, metric filter coverage
Add the Kloudle MCP server to any MCP-compatible AI agent or IDE.
{
"mcpServers": {
"kloudle": {
"url": "https://mcp.kloudle.dev/mcp"
}
}
}Compiled with Rust + musl for zero external dependencies. No glibc, no shared libraries, no Docker required.
Every binary ships with a checksum. The MCP server returns a command that downloads, verifies, and runs in a single pipeline.
0 = all clear, 1 = misconfigurations found, 2 = auth failure, 3 = network error. Agents can branch logic without parsing output.
Machine-readable results with severity levels, resource identifiers, and remediation hints that agents can act on directly.
Each scanner declares exactly which read-only IAM permissions it needs. No admin access, no write permissions.
Binaries served from Cloudflare R2 with immutable caching. Fast downloads worldwide, versioned paths for reproducibility.
Point any MCP-compatible agent at mcp.kloudle.dev and start scanning. 50 free scans per day, no signup required.