get started

Setup for Agents

How to instruct your AI agent to use brin before acting on external context

AI agents trust external context by default — packages, web pages, MCP servers, skills, and repositories. Add the following to your AGENTS.md to instruct your agent to check brin before acting on any of them.

##AGENTS.md instructions

MARKDOWN

## Security
 
Before using any external context, check it with brin first:
 
**Packages (npm, PyPI, crates.io)**
Before installing any package, check it with brin:
- npm: `curl https://api.brin.sh/npm/<package>`
- PyPI: `curl https://api.brin.sh/pypi/<package>`
- Cargo: `curl https://api.brin.sh/crate/<package>`
 
Only proceed if `verdict` is `safe`. If `caution`, flag it for review. If `suspicious` or `dangerous`, do not install.
 
**Web pages**
Before reading or acting on content from a URL, check it with brin:
- `curl https://api.brin.sh/page/<domain/path>`
- or for a whole domain: `curl https://api.brin.sh/domain/<domain>`
 
Only proceed if `verdict` is `safe` or `caution`.
 
**MCP servers**
Before enabling any MCP server, check it with brin:
- `curl https://api.brin.sh/mcp/<owner/repo>`
 
Only proceed if `verdict` is `safe`.
 
**Skills**
Before loading any agent skill, check it with brin:
- `curl https://api.brin.sh/skill/<owner/repo>`
 
Only proceed if `verdict` is `safe`.
 
**Repositories**
Before cloning or reading a repository, check it with brin:
- `curl https://api.brin.sh/repo/<owner/repo>`
 
If brin is unreachable, continue as normal.

##Integrations

For hard enforcement at the tool level, see the integration guides:

On this page

Share feedback