io.github.traveljamboree/agentsec-mcp
Official3 toolsAgentSec MCP
Security intelligence via x402 on Base. CVE lookup, IP reputation, secret scanning.
Security intelligence including CVE lookup, IP reputation, and secret scanning.
Captured live from the server via tools/list.
cve_lookup
Look up known CVE vulnerabilities for an npm package+version or a specific CVE ID. Returns CVSS scores, descriptions, and fix versions from NVD and OSV. Results are cached for 10 minutes. Costs $0.01 USDC per call.
No parameters.
reputation_check
Check the reputation of an IP address or domain using AbuseIPDB and VirusTotal. Returns a security verdict (malicious/suspicious/unknown/clean) with confidence signals. Verdict is conservative: incomplete data returns 'unknown' never 'clean'. Results are cached for 10 minutes. Costs $0.01 USDC per call.
No parameters.
secret_scan
Scan text content for hardcoded secrets, API keys, and credentials using 20 pre-compiled patterns. Privacy guarantee: Input text is NEVER logged, cached, stored, or forwarded. Only findings_count and finding offsets (not matched values) are returned. Detected pattern types include: AWS keys, GitHub/GitLab PATs, OpenAI/Anthropic keys, Stripe secrets, Slack tokens, PEM private keys, JWT tokens, and 13 more. Per-call rate limit: 100/min. Payment: $0.05 USDC per scan.
No parameters.
README not available yet.
Install
claude_desktop_config.json
{
"mcpServers": {
"agentsec-mcp": {
"command": "npx",
"args": [
"-y",
"mcp-remote",
"https://agentsec-mcp.agentsec-mcp.workers.dev/mcp"
]
}
}
}Desktop config is stdio-only; this bridges via mcp-remote. Native remote: Settings > Connectors.