AI agent security scanner. Detect vulnerabilities in agent configurations, MCP servers, and tool permissions. Available as CLI, GitHub Action, ECC plugin, and GitHub App integration. 🛡️

AI-first security scanner with 76 analyzers, 9,600+ detection rules, and repo poisoning detection for AI/ML, LLM agents, and MCP servers. Scan any GitHub repo with: medusa scan --git user/repo

Automated security investigation tool using Microsoft MCP Servers, GitHub Copilot, Python Modules and custom copilot-instructions.

Security scanner for GitHub repos, Agent Skills, Plugins, and MCP servers. 18 scanners. Zero dependencies.

GitHub Actions & CI/CD security scanner. Detects 30+ attack patterns including HackerBot-Claw campaign vectors. CLI + MCP server + SARIF output.

Agent Hub is an AI orchestration platform that transforms how developers and DevOps engineers interact with their toolchain. Built on the cutting-edge Model Context Protocol (MCP), it provides intelligent automation through specialized AI agents, seamlessly integrating with GitHub, Azure, security tools, and data processing

This AI agent analyzes code repositories, detects potential security vulnerabilities, reviews code quality, and suggests fixes based on Sentry error logs using Sentry and GitHub MCP servers!

Python vulnerability scanner & MCP security toolkit. Real-time dependency checking via OSV/NVD/GitHub Advisory DBs, Docker analysis, secrets detection, MCP config validation, LLM-powered risk assessment & interactive security audits. Full CVE details, CVSS scores & remediation guidance.

This project is a secure MCP server built with Node.js and Express. It features HTTPS encryption using self-signed certificates, GitHub OAuth authentication, and additional security measures like rate limiting and HTTP header protection.

MCP Server for GitHub Advanced Security

GitHub security posture analysis for AI agents — 39 MCP tools, 45 checks across org, repos, Actions, secrets, supply chain, and access control

No description available

Github Open-Source and Public MCP Servers Repositories Security Scanner

Security scanner for MCP-connected AI agent pipelines — 77 rules, 13 scanners, OWASP Agentic 10/10, GitHub Action, SARIF, compliance mapping

The first GitHub Action that scans MCP servers, AI agents & LLM pipelines for security vulnerabilities. 24 checks: tool poisoning, SSRF, prompt injection, DataFlow taint. Results in GitHub Security tab via SARIF. No API key required.

The CI/CD layer for AI-native development — 5 GitHub Actions for PR quality, cost tracking, MCP testing, supply chain security, and agent skill validation

GitHub Action: security scanner for MCP servers

Lint, security-check, fuzz, and benchmark MCP servers locally and in GitHub Actions.

Professional MCP servers collection for Claude Code - Docker, Deployment, Testing, Security, GitHub automation & more

MCP (Model Context Protocol) server for the [USecVisLib](https://github.com/vulnex/usecvislib) security visualization library.

CLI and GitHub Action for static security scanning of JavaScript/TypeScript Model Context Protocol (MCP) server repositories.

- ClickUp and GitHub integration skills - OWASP Top 10 security skills (A01, A03, A07) - Slash commands: /ticket, /commit, /merge, /security-scan, /audit - MCP and project templates

An MCP security scanner that integrates with AI coding agents like Claude Code, GitHub Copilot, Cursor, and others.

A n8n community node for use with https://github.com/btafoya/spamassassin-mcp, A secure, containerized Model Context Protocol (MCP) server that integrates SpamAssassin for defensive email security analysis. This server provides Claude Code with comprehensive email analysis capabilities while maintaining strict security boundaries.

Scan Claude MCP skills for security threats before you install. npx skill-sentry < your skills github url> free, open source, no code executed.

Security scanner for Model Context Protocol (MCP) servers. Static + dynamic checks for path traversal, auth gaps, prompt injection surfaces. Produces SARIF output for GitHub code scanning.

MCP server for secure Kubernetes Interaction via kubectl commands. Enables AI assistants like GitHub Copilot to safely interact with K8s clusters with robust validation and security.

HTTP security header scanner with CVE correlation, 1,200+ fingerprinting signatures, CISA KEV integration, and AI-powered remediation via MCP. Supports SARIF output for GitHub Code Scanning.

Self-hosting GitHub autonomy engine. Rate-limit-hardened MCP server for autonomous repo management, security sweeps, RFC tracking, and CI orchestration. Zero local footprint — steering wheel on your Mac, engine on GitHub. 🚜

ALM.Xpp.PpacMCP is a standalone MCP server for administering Power Platform and Dynamics 365 Finance & SCM environments through AI clients such as GitHub Copilot, Claude, and Cursor. It wraps d365bap.tools and the Power Platform CLI to expose operational tasks like tenant authentication, environment management, D365 app lifecycle, user and security