Security Audit Tool
@qianniuspace
Security Audit Tool について
A powerful MCP (Model Context Protocol) Server that audits npm package dependencies for security vulnerabilities. Built with remote npm registry integration for real-time security checks.
基本情報
設定
以下の設定を使って、このサーバーを MCP 対応クライアントに追加してください。
{
"mcpServers": {
"mcp-security-audit": {
"command": "npx",
"args": [
"-y",
"@smithery/cli",
"install",
"@qianniuspace/mcp-security-audit",
"--client",
"claude"
]
}
}
}ツール
ツールは検出されませんでした
ツールは README から自動的に抽出されます。メンテナーは ## Tools という見出しの下に記載することで、このタブに反映できます。
概要
What is Security Audit Tool?
Security Audit Tool is an MCP (Model Context Protocol) server that audits npm package dependencies for security vulnerabilities. It integrates with the remote npm registry to perform real-time security checks and is designed for developers using MCP-compatible clients like Cline or Cursor.
How to use Security Audit Tool?
You can install Security Audit Tool via Smithery (npx -y @smithery/cli install @qianniuspace/mcp-security-audit --client claude) or by adding an MCP configuration to your client. For NPX, add a JSON entry with command npx and args ["-y", "mcp-security-audit"]. Alternatively, download the source, build, and point to the built index.js.
Key features of Security Audit Tool
- Real-time security vulnerability scanning
- Remote npm registry integration
- Detailed vulnerability reports with severity levels
- Support for critical, high, moderate, and low severities
- Compatibility with npm, pnpm, and yarn package managers
- Automatic fix recommendations with CVSS and CVE references
Use cases of Security Audit Tool
- Audit npm package dependencies before deployment
- Integrate security checks into CI/CD pipelines via MCP
- Obtain detailed vulnerability reports with severity and fix guidance
- Automate dependency vulnerability scanning within MCP-compatible tools
FAQ from Security Audit Tool
What does Security Audit Tool scan?
It scans npm package dependencies for known security vulnerabilities using the remote npm registry.
What package managers are supported?
It is compatible with npm, pnpm, and yarn.
What information does the report include?
Reports include severity level, CVE references, CVSS score, fix recommendations, and fixed version if available.
Does the tool require authentication?
No authentication is mentioned; it uses public npm registry data.
How is the tool integrated with clients?
It is configured as an MCP server via the mcpServers JSON object in clients like Cline or Cursor.
「開発者ツール」の他のコンテンツ
Test
x1xhlolFULL Augment Code, Claude Code, Cluely, CodeBuddy, Comet, Cursor, Devin AI, Junie, Kiro, Leap.new, Lovable, Manus, NotionAI, Orchids.app, Perplexity, Poke, Qoder, Replit, Same.dev, Trae, Traycer AI, VSCode Agent, Warp.dev, Windsurf, Xcode, Z.ai Code, Dia & v0. (And other Open Sou
sentry-mcp
getsentryAn MCP server for interacting with Sentry via LLMs.
Deepwiki MCP Server
regenrek📖 MCP server for fetch deepwiki.com and get latest knowledge in Cursor and other Code Editors

Sentry
modelcontextprotocolModel Context Protocol Servers
Unity MCP (Server + Plugin)
IvanMurzakAI Skills, MCP Tools, and CLI for Unity Engine. Full AI develop and test loop. Use cli for quick setup. Efficient token usage, advanced tools. Any C# method may be turned into a tool by a single line. Works with Claude Code, Gemini, Copilot, Cursor and any other absolutely for fr
コメント