vulnicheck

MCP ServerMCP Registry官方收录

io.github.andrasfe/vulnicheck · v0.1.0

HTTP MCP Server for comprehensive Python vulnerability scanning and security analysis.

源仓库 ↗

概览

vulnicheck 是一个MCP Server，收录自官方 MCP Registry。支持 streamable-http 传输。本页提供 Cursor、Claude Code 等客户端的安装配置片段。

安装

选择你的平台查看安装方式

{
  "mcpServers": {
    "vulnicheck": {
      "command": "docker",
      "args": [
        "run",
        "-i",
        "--rm",
        "docker.io/andrasfe/vulnicheck:main"
      ]
    }
  }
}

环境变量

NVD_API_KEY可选secret

API key for NIST National Vulnerability Database (increases rate limit from 5 to 50 requests per 30 seconds)

GITHUB_TOKEN可选secret

GitHub token for Advisory Database access (increases rate limit to 5000 requests per hour)

OPENAI_API_KEY可选secret

OpenAI API key for LLM-based risk assessment in MCP passthrough operations

ANTHROPIC_API_KEY可选secret

Anthropic API key for LLM-based risk assessment (alternative to OpenAI)

MCP_PORT可选

Port for MCP HTTP server (default: 3000)

CACHE_TTL可选

Cache time-to-live in seconds for vulnerability data (default: 900)

VULNICHECK_HTTP_ONLY可选

Enable HTTP-only mode with MCP client delegation (true/false, default: auto-detect)

统一 Manifest

{
  "id": "io.github.andrasfe/vulnicheck",
  "type": "mcp-server",
  "version": "0.1.0",
  "displayName": "vulnicheck",
  "description": "HTTP MCP Server for comprehensive Python vulnerability scanning and security analysis.",
  "repository": {
    "url": "https://github.com/andrasfe/vulnicheck",
    "source": "github"
  },
  "distribution": {
    "packages": [
      {
        "registryType": "oci",
        "identifier": "docker.io/andrasfe/vulnicheck:main",
        "transport": "streamable-http",
        "environmentVariables": [
          {
            "name": "NVD_API_KEY",
            "description": "API key for NIST National Vulnerability Database (increases rate limit from 5 to 50 requests per 30 seconds)",
            "isSecret": true
          },
          {
            "name": "GITHUB_TOKEN",
            "description": "GitHub token for Advisory Database access (increases rate limit to 5000 requests per hour)",
            "isSecret": true
          },
          {
            "name": "OPENAI_API_KEY",
            "description": "OpenAI API key for LLM-based risk assessment in MCP passthrough operations",
            "isSecret": true
          },
          {
            "name": "ANTHROPIC_API_KEY",
            "description": "Anthropic API key for LLM-based risk assessment (alternative to OpenAI)",
            "isSecret": true
          },
          {
            "name": "MCP_PORT",
            "description": "Port for MCP HTTP server (default: 3000)"
          },
          {
            "name": "CACHE_TTL",
            "description": "Cache time-to-live in seconds for vulnerability data (default: 900)"
          },
          {
            "name": "VULNICHECK_HTTP_ONLY",
            "description": "Enable HTTP-only mode with MCP client delegation (true/false, default: auto-detect)"
          }
        ]
      }
    ],
    "remotes": []
  },
  "dependencies": [],
  "installTargets": [
    "claude-code",
    "claude-desktop",
    "cursor",
    "vscode"
  ],
  "keywords": [],
  "provenance": {
    "origin": "official-mcp-registry",
    "originalId": "io.github.andrasfe/vulnicheck",
    "originalUrl": "https://registry.modelcontextprotocol.io/v0.1/servers/io.github.andrasfe%2Fvulnicheck/versions/latest",
    "isOfficial": true,
    "status": "active"
  }
}

vulnicheck

概览

安装

环境变量

相关资源

RFP.ai

xenarch-mcp

api

agent-lsp

hostinger-api-mcp

Unterm

统一 Manifest