Doramagic.ai Chinese

MCP Tool Integration · Public

agent-opfor

MCP tool integration project for safely connecting external tools, services, or data sources to an AI host.

MCPTool callingHost configurationPermission boundariesAcceptance checks

Last verification date: 2026-07-07 Verification method: source evidence, semantic profile, public page gate, and static build acceptance.

Publication status · 2026-07-07

What is agent-opfor?

01

Quick decision

Use this section to decide whether the project is worth a deeper read.
Best forDevelopers who need Claude, Cursor, Codex, or another MCP-capable AI host to call external tools safely.

Match the project to your task before installing it.

CapabilityMCP setup guidance, host configuration checks, tool permission boundaries, recovery steps, and acceptance checks

MCP tool integration project for safely connecting external tools, services, or data sources to an AI host.

RepositoryKeyValueSoftwareSystems/agent-opfor

365 stars · 20 forks

02

What it can do

Translate the upstream project into concrete capabilities the user can judge before installing.
1

OPFOR Overview & System Architecture

Related topics: Runners & Entry Points (CLI, SDK, MCP Server, Browser Extension, Skills), Evaluators, Patterns & Attack Coverage (OWASP + EU AI Act), Configuration, Reports, Telemetry & Op...

Source: https://github.com/KeyValueSoftwareSystems/agent-opfor / Human Manual
2

Runners & Entry Points (CLI, SDK, MCP Server, Browser Extension, Skills)

Related topics: OPFOR Overview & System Architecture, Evaluators, Patterns & Attack Coverage (OWASP + EU AI Act), Configuration, Reports, Telemetry & Operations

Source: https://github.com/KeyValueSoftwareSystems/agent-opfor / Human Manual
3

Evaluators, Patterns & Attack Coverage (OWASP + EU AI Act)

Related topics: OPFOR Overview & System Architecture, Runners & Entry Points (CLI, SDK, MCP Server, Browser Extension, Skills), Configuration, Reports, Telemetry & Operations

Source: https://github.com/KeyValueSoftwareSystems/agent-opfor / Human Manual
4

Configuration, Reports, Telemetry & Operations

Related topics: OPFOR Overview & System Architecture, Runners & Entry Points (CLI, SDK, MCP Server, Browser Extension, Skills), Evaluators, Patterns & Attack Coverage (OWASP + EU AI Act)

Source: https://github.com/KeyValueSoftwareSystems/agent-opfor / Human Manual
5

Doramagic Pitfall Log

Source-linked risks stay visible on the manual page so the preview does not read like a recommendation.

Source: Doramagic discovery, validation, and Project Pack records

Sources: https://github.com/KeyValueSoftwareSystems/agent-opfor, Human Manual, Project Pack evidence, and downstream validation signals.

03

Community Discussion Evidence

Project-level external discussion stays visible on the detail page, not only inside the manual.
Stars365 stars
Forks20 forks
Contributors15 contributors
Licenseunknown

Community Discussion Evidence

12 source-linked items

Review these external discussions before using agent-opfor with real data or production workflows. They are review inputs, not standalone proof that the project is production-ready.

04

How to start

Only source-backed commands are shown here. Verify them in an isolated environment first.
1

Try the prompt first

Test the workflow without installing the upstream project.

preview
2

Read the Human Manual

Understand inputs, outputs, limits, and failure modes.

manual
3

Take context to your AI host

Use the compiled assets in your preferred AI environment.

context
4

Run sandbox verification

Confirm install commands and rollback before using a primary environment.

verify
npm install -g @keyvaluesystems/agent-opfor-cli

Official start command · https://github.com/KeyValueSoftwareSystems/agent-opfor#readme · verified: yes

05

Human Manual

The English page must expose the real manual, not a short placeholder.

8+ sections · Human Manual

agent-opfor Manual

Open-source adversary emulation for AI agents and MCP servers.

Open the full manual
  1. https://github.com/KeyValueSoftwareSystems/agent-opfor Project Manual
  2. Table of Contents
  3. OPFOR Overview & System Architecture
  4. Related Pages
  5. 1. Scope and Design Goals
  6. 2. System Components
  7. 3. Architecture and Data Flow
  8. 4. Typical Usage and Known Limitations
1

OPFOR Overview & System Architecture

Related topics: Runners & Entry Points (CLI, SDK, MCP Server, Browser Extension, Skills), Evaluators, Patterns & Attack Coverage (OWASP + EU AI Act), Configuration, Reports, Telemetry & Op...

Source: https://github.com/KeyValueSoftwareSystems/agent-opfor / Human Manual
2

Runners & Entry Points (CLI, SDK, MCP Server, Browser Extension, Skills)

Related topics: OPFOR Overview & System Architecture, Evaluators, Patterns & Attack Coverage (OWASP + EU AI Act), Configuration, Reports, Telemetry & Operations

Source: https://github.com/KeyValueSoftwareSystems/agent-opfor / Human Manual
3

Evaluators, Patterns & Attack Coverage (OWASP + EU AI Act)

Related topics: OPFOR Overview & System Architecture, Runners & Entry Points (CLI, SDK, MCP Server, Browser Extension, Skills), Configuration, Reports, Telemetry & Operations

Source: https://github.com/KeyValueSoftwareSystems/agent-opfor / Human Manual
4

Configuration, Reports, Telemetry & Operations

Related topics: OPFOR Overview & System Architecture, Runners & Entry Points (CLI, SDK, MCP Server, Browser Extension, Skills), Evaluators, Patterns & Attack Coverage (OWASP + EU AI Act)

Source: https://github.com/KeyValueSoftwareSystems/agent-opfor / Human Manual
5

Doramagic Pitfall Log

Source-linked risks stay visible on the manual page so the preview does not read like a recommendation.

Source: Doramagic discovery, validation, and Project Pack records

06

AI Context Pack and portable assets

After deciding to continue, take the project context into your own AI host.

Complete pack plus user-owned assets

These files are planning and verification assets for Claude Code, Codex, Gemini, Cursor, ChatGPT, and other AI hosts.

07

Preflight checks

Treat this page as a planning asset, not proof that your local environment is ready.

08

Pitfall Log and verification risks

Doramagic surfaces high-risk items before users treat a candidate capability as verified.
high

Security or permission risk requires verification

Developers may expose sensitive permissions or credentials: feat: opfor setup wizard has no prompt for custom HTTP headers on url-transport MCP targets

high

Security or permission risk requires verification

Developers may expose sensitive permissions or credentials: feat: support for evaluating Site-Specific Extension Execution

medium

Installation risk requires verification

Upgrade or migration may change expected behavior: v0.10.0

medium

Installation risk requires verification

May increase setup, validation, or first-run risk for the user.

medium

Configuration risk requires verification

May increase setup, validation, or first-run risk for the user.

medium

Configuration risk requires verification

Developers may misconfigure credentials, environment, or host setup: bug: Nested .opfor configs

medium

Configuration risk requires verification

Developers may misconfigure credentials, environment, or host setup: bug: Significant delay in registering pause button clicks.

medium

Configuration risk requires verification

Developers may misconfigure credentials, environment, or host setup: bug: browser extension targets login form instead of chatbot input during red-team assessment