Vigil - AI Security Audit and Cryptographic Proof
@vigil-xy
关于 Vigil - AI Security Audit and Cryptographic Proof
Security scanner for developers and startups.
基本信息
配置
使用下面的配置,将此服务器添加到你的 MCP 客户端。
{
"mcpServers": {
"vigil-mcp": {
"command": "npx",
"args": [
"vygil",
"scan"
]
}
}
}工具
未检测到工具
工具是从 README 中自动提取的。维护者可以在 ## Tools 标题下列出工具,即可填充这部分内容。
概览
What is Vigil - AI Security Audit and Cryptographic Proof?
Vigil is a production-ready security scanner that performs deep security audits of systems—covering networks, processes, filesystems, dependencies, configurations, and containers—and generates cryptographically signed, tamper-evident reports using Ed25519 signatures with SHA-256 hashing. It integrates seamlessly with AI assistants like Claude Desktop and Cursor through the Model Context Protocol (MCP), making it ideal for developers and security teams.
How to use Vigil - AI Security Audit and Cryptographic Proof?
Install globally via npm (npm install -g vygil) or run directly with npx (npx vygil scan). Use the CLI: vygil scan (basic scan), vygil scan --json -o report.json (JSON output saved to file), vygil verify report.json (verify cryptographic signature), and vygil keys --generate (generate key pair). To expose scanning tools to AI assistants, start the MCP server with vygil-mcp and configure the assistant’s MCP settings (e.g., add to Claude Desktop’s claude_desktop_config.json).
Key features of Vigil - AI Security Audit and Cryptographic Proof
- Comprehensive security scanning across six domains
- Cryptographically signed reports with Ed25519 and SHA-256
- MCP server integration for AI assistants (Claude, Cursor)
- CLI interface with scan, verify, and key management commands
- Tamper-evident reports for compliance and auditing
- Modular scanner design with parallel execution
Use cases of Vigil - AI Security Audit and Cryptographic Proof
- Identify security vulnerabilities in local development environments
- Detect exposed secrets, weak file permissions, and dangerous configurations
- Audit dependencies for known vulnerabilities using npm audit
- Monitor container and network security for privileged containers and open ports
- Generate tamper-evident security reports for compliance and auditing
FAQ from Vigil - AI Security Audit and Cryptographic Proof
How do I install Vigil?
Install globally via npm: npm install -g vygil, or use directly with npx: npx vygil scan (no installation required). You can also clone the repository and build from source.
How do I run a security scan?
Use the CLI command vygil scan for a basic scan with cryptographic signing. Add --json for JSON output, -o report.json to save to file, or --no-sign to skip signing. Combine options, e.g., vygil scan --json -o report.json.
How do I verify that a report hasn’t been tampered with?
Run vygil verify report.json to verify the cryptographic signature (Ed25519). The verification confirms the report’s authenticity and integrity.
How do I integrate Vigil with Claude Desktop or Cursor?
After starting the MCP server (vygil-mcp), add it to your AI assistant’s MCP configuration file. For Claude Desktop on macOS, add to ~/Library/Application Support/Claude/claude_desktop_config.json. For Cursor, add to .cursor/mcp_config.json in your project.
Where are cryptographic keys stored?
Keys are stored in the ~/.vigil/keys/ directory. Generate a new Ed25519 key pair with vygil keys --generate, and show your public key with vygil keys --show-public.
开发工具 分类下的更多 MCP 服务器
Hello World MCP Server (Reference Extension)
anthropicsDesktop Extensions: One-click local MCP server installation in desktop apps
nuxt-mcp / vite-plugin-mcp
antfuMCP server helping models to understand your Vite/Nuxt app better.
Code Index MCP
johnhuang316A Model Context Protocol (MCP) server that helps large language models index, search, and analyze code repositories with minimal setup
sentry-mcp
getsentryAn MCP server for interacting with Sentry via LLMs.
Golf
golf-mcpProduction-Ready MCP Server Framework • Build, deploy & scale secure AI agent infrastructure • Includes Auth, Observability, Debugger, Telemetry & Runtime • Run real-world MCPs powering AI Agents
评论