Osv Ui Mcp
@toan203
关于 Osv Ui Mcp
Visual CVE audit dashboard for npm, Python, Go, and Rust projects. Scans your project manifests (package-lock.json, requirements.txt, go.sum, Cargo.lock) against OSV.dev live data, opens a browser dashboard for human review, then applies fixes only after explicit confirmation. Su
基本信息
配置
使用下面的配置,将此服务器添加到你的 MCP 客户端。
{
"mcpServers": {
"osv-ui": {
"command": "npx",
"args": [
"-y",
"osv-ui-mcp"
]
}
}
}工具
4Scan a project directory for CVE vulnerabilities. Automatically detects npm (package-lock.json), Python (requirements.txt / Pipfile.lock / poetry.lock), Go (go.sum), and Rust (Cargo.lock) manifests. Queries live CVE data from OSV.dev. Returns structured vulnerability report with severity counts, risk score, and fix recommendations. Use this as the first step before open_dashboard or apply_fixes.
Launch the osv-ui visual dashboard in the browser for human review. This is the HUMAN-IN-THE-LOOP step — always offer this before applying fixes. The dashboard shows full CVE details, severity charts, and the upgrade guide. Returns the dashboard URL. If already running for this path, returns existing URL.
Get the safe upgrade commands for vulnerable packages WITHOUT executing them. Use this to show the user what will be changed before calling apply_fixes. Returns a list of commands grouped by ecosystem (npm install / pip install).
Execute package upgrade commands to fix CVEs. IMPORTANT: This is a DESTRUCTIVE action that modifies package files. ALWAYS call get_fix_commands first and confirm with the user before calling this. Returns the command output for each fix applied.
概览
What is Osv Ui Mcp?
Osv Ui Mcp is a visual CVE audit dashboard for npm, Python, Go, and Rust projects. It scans project manifests (package-lock.json, requirements.txt, go.sum, Cargo.lock) against live OSV.dev data, opens a browser dashboard for human review, and applies fixes only after explicit confirmation. It supports multi-service monorepos in a single command.
How to use Osv Ui Mcp?
Run the scanner on your project manifests; the server will open a browser dashboard displaying vulnerabilities. Review the results and confirm fixes, which are applied only after explicit approval.
Key features of Osv Ui Mcp
- Visual browser dashboard for CVE review
- Scans npm, Python, Go, and Rust manifests
- Uses live OSV.dev vulnerability data
- Fixes applied only after human confirmation
- Supports multi-service monorepos in one scan
Use cases of Osv Ui Mcp
- Auditing Node.js, Python, Go, and Rust projects for known CVEs
- Reviewing vulnerabilities across multiple services in a monorepo
- Applying security fixes only after manual approval
FAQ from Osv Ui Mcp
—
其他 分类下的更多 MCP 服务器
FastMCP v2 🚀
jlowin🚀 The fast, Pythonic way to build MCP servers and clients.
🚀 Model Context Protocol (MCP) Curriculum for Beginners
microsoftThis open-source curriculum introduces the fundamentals of Model Context Protocol (MCP) through real-world, cross-language examples in .NET, Java, TypeScript, JavaScript, Rust and Python. Designed for developers, it focuses on practical techniques for building modular, scalable,
Awesome Mcp Servers
punkpeyeA collection of MCP servers.
Blender
ahujasidOpen-source MCP to use Blender with any LLM
ICSS
chokcoco不止于 CSS
评论