> ## Documentation Index > Fetch the complete documentation index at: https://docs.getunbound.ai/llms.txt > Use this file to discover all available pages before exploring further. # Introduction > Learn about Unbound Security, the Agent Access Security Broker for AI coding agents ## What is Unbound Security? Unbound Security is an **Agent Access Security Broker (AASB)** that helps organizations discover, assess, and enforce policy for AI coding agents. Unbound gives security teams full visibility and control over every agent, tool, and action — covering terminal commands, file access, MCP connections, and IDE plugins across tools like Claude Code, Cursor, Cline, GitHub Copilot, and Windsurf. ## Key Capabilities ### Agent Discovery * **Inventory AI coding agents in use**: Detect Claude Code, Cursor, Windsurf, GitHub Copilot, Cline, and more across your engineering org * **Enumerate MCP servers**: Surface every MCP server a developer has connected, including risky or unknown ones * **Map IDE plugins**: See which AI-powered IDE extensions are installed and how they are configured ### Risk Assessment * **Per-developer posture scores**: A live security signal for each engineer based on the agents, plugins, and MCP servers they have enabled * **Risky MCP connection alerts**: Flag MCP servers with excessive permissions or untrusted sources * **Autonomy analysis**: Understand how much runway each agent has inside each developer's environment ### Policy Enforcement * **Terminal command control**: Allow or deny commands with semantic parsing, not brittle regex * **MCP policies**: Govern which MCP servers and tools each agent can reach * **Approval workflows**: Require human approval for sensitive agent actions * **Audit logging**: A complete record of what every agent did, for compliance and incident review ### Data Protection * **Automatic secret detection**: Catch and redact secrets that would otherwise leak to LLM providers * **Sensitive data routing**: Route requests containing sensitive content to private LLMs in Google Vertex AI, Bedrock, or confidential computing infrastructure * **Your data stays private**: While keeping your teams productive ## How It Works Unbound operates as an endpoint-level control plane for AI coding agents. Three steps: ### 1. Discover Unbound inventories the AI coding agents, MCP servers, and IDE plugins in use across your engineering org — no agent-by-agent configuration required. ### 2. Assess Every agent, tool, and action is scored for risk. Security teams get a live posture view: who is running what, which MCP servers are risky, and where policies are missing. ### 3. Enforce Policies are enforced at the endpoint and at the model layer — terminal command allow/deny, MCP scope controls, approval workflows, and optional LLM request routing for sensitive data. ## Supported Integrations Unbound governs and integrates with popular AI coding tools and platforms: * **AI Coding Agents**: Claude Code, Cursor, Cline, GitHub Copilot, Windsurf, Roo Code, Kilo Code, Codex, Gemini CLI * **MCP Servers**: Policy enforcement across any MCP server a developer connects * **Enterprise Model Endpoints**: Vertex AI, Bedrock, and other private model endpoints for sensitive-data routing * **Authentication**: SAML/OIDC and SCIM integration * **MDM**: Auto-configure and deploy agent settings through your device management platform ## Enterprise Features ### Security Controls * Terminal command, MCP, and file access policy enforcement * Automated masking and redaction of sensitive data * Private-model routing for sensitive requests * Compliance-grade audit logging ### Management & Visibility * Per-developer, team, and department posture * Agent, plugin, and MCP inventory * Usage insights and recommendations * Centralized AI coding tool management ## Getting Started To start using Unbound Security: 1. **Install the CLI**: `npm install -g unbound-cli` 2. **Login**: `unbound login` 3. **Set up your AI tool**: `unbound setup cursor` (or `claude-code`, `gemini-cli`, `codex`, etc.) 4. **Monitor and govern**: Track agent activity and enforce policy from the [dashboard](https://gateway.getunbound.ai/dashboard)