Github Dependabot MCP server
@avarant
关于 Github Dependabot MCP server
mcp server for github dependabot
基本信息
配置
使用下面的配置,将此服务器添加到你的 MCP 客户端。
{
"mcpServers": {
"github-dependabot-mcp-server": {
"command": "python",
"args": [
"-m",
"keyring",
"set",
"github_mcp_server",
"personal_access_token"
]
}
}
}工具
未检测到工具
工具是从 README 中自动提取的。维护者可以在 ## Tools 标题下列出工具,即可填充这部分内容。
概览
What is Github Dependabot MCP server?
The Github Dependabot MCP server fetches Github Dependabot alerts for a specified repository. It is intended for developers who use MCP-capable tools (e.g., Claude, Cursor) and need to retrieve security alerts from a Github repository.
How to use Github Dependabot MCP server?
Install uv (a fast Python package installer), then clone the repository. Set up a Github Personal Access Token with repo and security_events scopes, either via macOS Keychain or the GITHUB_PERSONAL_ACCESS_TOKEN environment variable. Finally, add the server to your MCP configuration (e.g., ~/.cursor/mcp.json) using the uv command as shown in the README. The server provides one tool: get_dependabot_alerts(repo_owner, repo_name), which returns a list of alert objects from the Github API.
Key features of Github Dependabot MCP server
- Fetches Dependabot alerts via Github API
- Single tool:
get_dependabot_alerts(repo_owner, repo_name) - Supports token authentication via Keychain or environment variable
- Runs with
uvfor fast, dependency‑managed execution - Designed for use with MCP‑compatible clients (e.g., Cursor)
Use cases of Github Dependabot MCP server
- Monitor Dependabot alerts for a specific repository within an AI‑assisted coding environment
- Automate security review by feeding alerts into a conversation with an MCP‑capable assistant
- Integrate Dependabot alert retrieval into a broader MCP‑based workflow
FAQ from Github Dependabot MCP server
What does this server do differently from the standard mcp/github server?
It focuses solely on fetching Dependabot alerts via a dedicated tool (get_dependabot_alerts), rather than providing broad Github API access.
What dependencies are required to run the server?
The server requires uv (a Python package installer/resolver) and a Github Personal Access Token with repo and security_events scopes.
Where does the data come from?
All alert data is fetched live from the Github REST API using the provided token.
How is authentication handled?
The server first attempts to read the token from the macOS Keychain (via keyring). If that fails, it falls back to the GITHUB_PERSONAL_ACCESS_TOKEN environment variable. It will also try to store the token in the Keychain for future use if it was provided via environment variable.
What transport does the server use?
The server communicates over stdin/stdout using the MCP protocol, as configured in the MCP client’s mcp.json with uv run mcp run main.py.
版本控制 分类下的更多 MCP 服务器
Atlassian Bitbucket MCP Server
aashariNode.js/TypeScript MCP server for Atlassian Bitbucket. Enables AI systems (LLMs) to interact with workspaces, repositories, and pull requests via tools (list, get, comment, search). Connects AI directly to version control workflows through the standard MCP interface.
Test
skillsCreate a site or blog from your GitHub repositories with GitHub Pages.
Linear MCP Server
clinea private MCP server for accessing Linear
Code Review Server
crazyrabbitLTCA MCP server for code reviews
Linear MCP Server
jerhadfA server that integrates Linear's project management system with the Model Context Protocol (MCP) to allow LLMs to interact with Linear.
评论