Vibescan Mcp Server

1STDIOregistry active

Summary

Hooks up VibeScan's local security scanner so Claude can hunt for leaked secrets and code vulnerabilities in your projects without sending anything off your machine. You get two tools: vibescan_scan runs the full check across 14 secret categories (hardcoded credentials, cloud keys, SSH keys, .env files), flags dangerous patterns like eval() and SQL injection risks, and verifies git hygiene. vibescan_rules lists all 17 detection rules if you want to see what it's looking for. Useful when onboarding a new codebase, before commits, or when you want Claude to audit security posture during a conversation about your code.

CodeRabbit

AI writes the code. CodeRabbit catches the slop.

Try For Free →

Keep your Mac awake

Keep your Mac awake while Claude Code and 40+ AI agents run. Sleeps when they're idle.

One time payment $9 →

Context.dev

Integrate web data into your AI product. One API to scrape website & brand data.

Get API Key Now →

Make your agent a DeFi expert

Agent, run crypto. Access onchain data & trade routes via 1inch.

Install now →

Make money from your Skills

On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.

Start earning →

AppSignal

Monitor with ease. Code with confidence.

Start Free Trial →

CodeRabbit

AI writes the code. CodeRabbit catches the slop.

Try For Free →

Keep your Mac awake

Keep your Mac awake while Claude Code and 40+ AI agents run. Sleeps when they're idle.

One time payment $9 →

Context.dev

Integrate web data into your AI product. One API to scrape website & brand data.

Get API Key Now →

Make your agent a DeFi expert

Agent, run crypto. Access onchain data & trade routes via 1inch.

Install now →

Make money from your Skills

On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.

Start earning →

AppSignal

Monitor with ease. Code with confidence.

Start Free Trial →

vibescan-mcp-server

mcp-name: io.github.Aguantar/vibescan-mcp-server

MCP server for VibeScan — scan projects for leaked secrets and security issues directly from Claude Code.

Features

vibescan_scan — Scan a project for secrets, dangerous patterns, and git hygiene issues
vibescan_rules — List all 17 detection rules

What VibeScan detects

14 secret categories: env files, config hardcodes, cloud credentials, Docker/infra, CI/CD pipelines, IDE settings, SSH keys, hardcoded patterns, frontend env vars, data files, doc secrets, mobile files, system configs, editor remnants
Dangerous code patterns: eval(), exec(), shell injection, SQL injection, pickle, innerHTML
Git hygiene: missing .gitignore, unignored .env/.pem/.key files

All scanning runs locally — your code never leaves your machine.

Installation

pip install vibescan-mcp-server

Usage with Claude Code

Add to your .mcp.json:

{
  "mcpServers": {
    "vibescan": {
      "command": "vibescan-mcp-server"
    }
  }
}

Then ask Claude: "scan this project for security issues" or "check for leaked secrets".

License

MIT

Featured

CodeRabbit

AI writes the code. CodeRabbit catches the slop.

Try For Free →

Keep your Mac awake

Keep your Mac awake while Claude Code and 40+ AI agents run. Sleeps when they're idle.

One time payment $9 →

Context.dev

Integrate web data into your AI product. One API to scrape website & brand data.

Get API Key Now →

Make your agent a DeFi expert

Agent, run crypto. Access onchain data & trade routes via 1inch.

Install now →

Make money from your Skills

On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.

Start earning →

AppSignal

Monitor with ease. Code with confidence.

Start Free Trial →

Vibescan Mcp Server

vibescan-mcp-server

Features

What VibeScan detects

Installation

Usage with Claude Code

License

Vibescan Mcp Server

vibescan-mcp-server

Features

What VibeScan detects

Installation

Usage with Claude Code

License

Related Security & Pentesting MCP Servers

Related Security & Pentesting MCP Servers