What is PuppetString?
PuppetString is a security that Red team toolkit for AI agents, agentic workflows, and MCP servers. Maps to OWASP Top 10 for Agentic AI.. It has a Nerq Trust Score of 78/100 (B). 0 GitHub stars. Published by Port53-Cosplay. Last analyzed April 2026.
Why This Score
- ⚠️ Security: 0/100 — Some security concerns
- ⚠️ Maintenance: 1/100 — Maintenance activity is low
- ⚠️ Community: 0 stars, 0 downloads — Growing community
- ✅ Transparency: License: MIT — Clear licensing
Trust & Safety Overview
What PuppetString Does
PuppetString is a agent in the security category. Red team toolkit for AI agents, agentic workflows, and MCP servers. Maps to OWASP Top 10 for Agentic AI.. It is published by Port53-Cosplay and is open source. With 0 GitHub stars and 0 downloads, it has a small community of users and contributors.
Who Should Use PuppetString
PuppetString is well-suited for production use given its strong trust score and active community.
Details
| Author | Port53-Cosplay |
|---|---|
| Category | security |
| License | MIT |
| Type | agent |
| Source | View on GitHub |
| Security Score | 0/100 |
| Activity Score | 1/100 |
How to Get Started
Check the trust score before installing:
curl nerq.ai/v1/preflight?target=puppetstring
Setup guide · Full safety report · Production review · Is it safe?
Safer Alternatives
| Tool | Trust | Stars |
|---|---|---|
| Ciphey | 74 | 21.0K |
| strix | 74 | 20.3K |
| SWE-agent | 91 | 18.5K |
| promptfoo | 93 | 18.4K |
| anubis | 72 | 17.1K |
Frequently Asked Questions
Last updated April 2026. Trust scores based on automated analysis of public data.