mcp-security-audit
26
The Security Audit Tool is a Model Context Protocol (MCP) Server that performs security vulnerability scans on npm package dependencies. It offers real-time integration with remote npm registries and provides comprehensive reports on found vulnerabilities, supporting multiple package managers with automated fix recommendations.
Security Audit Tool
A powerful MCP (Model Context Protocol) Server that audits npm package dependencies for security vulnerabilities. It integrates with remote npm registries for real-time security checks and provides detailed reports with severity levels. The tool comes with features such as real-time vulnerability scanning, automatic fix recommendations, and compatibility with npm/pnpm/yarn package managers.
Features
- Real-time security vulnerability scanning
- Remote npm registry integration
- Detailed vulnerability reports with severity levels
- Support for various severity levels (critical, high, moderate, low)
- Automatic fix recommendations
- CVSS scoring and CVE references
Installation
- Install via Smithery for Claude Desktop
MCP Integration
- Options include using NPX or downloading the source code and configuring manually.
API Response Format
- Provides detailed vulnerability information including severity levels, CVSS scores, and CVE references.