1. Home
  2. Browse All Cursor MCP Servers
  3. 🔒 Security Cursor MCPs
  4. Vulnicheck

Vulnicheck

Real-time Python package vulnerability scanner that checks dependencies against OSV and NVD databases, providing comprehensive security analysis with CVE details, lock file support, and actionable upgrade recommendations.

andrasfe by andrasfe
Security MCP Servers
Updated 4 days ago
Added Jun 21, 2025
3 View Source Code
Vulnerability Scanner Dependency Check

Docs & Usage Guide

VulniCheck - AI-Powered Security Scanner

VulniCheck provides comprehensive security analysis for Python projects and GitHub repositories using AI-powered vulnerability detection.

Quick Start

Installation for Claude Code

[!CAUTION] MCP servers can execute code on your system. Only install MCP servers from trusted sources after reviewing their code and understanding the permissions they require.

The simplest way to get started is to ask claude: Hey Claude, follow instructions at https://raw.githubusercontent.com/andrasfe/vulnicheck/refs/heads/main/CLAUDE_INSTALL.md to install this MCP server.

Usage

Once installed, simply ask Claude Code:

"Run a comprehensive security check on my project"

"Run a comprehensive security check on https://github.com/owner/repo"

"Check this directory for security vulnerabilities"

VulniCheck will:

  • ✅ Scan dependencies for known vulnerabilities
  • ✅ Detect exposed secrets and credentials
  • ✅ Analyze Dockerfiles for security issues
  • ✅ Validate MCP configurations
  • ✅ Generate AI-powered risk assessments
  • ✅ Provide actionable remediation recommendations

Key Features

  • Comprehensive Coverage: Queries 5+ vulnerability databases (OSV.dev, NVD, GitHub Advisory, CIRCL, Safety DB)
  • GitHub Integration: Scan any public/private GitHub repository directly
  • AI-Powered Analysis: Uses OpenAI/Anthropic APIs for intelligent security assessment
  • Secrets Detection: Finds exposed API keys, passwords, and credentials
  • Docker Security: Analyzes Dockerfiles for vulnerable dependencies
  • Smart Caching: Avoids redundant scans with commit-level caching
  • Zero Config: Works out of the box, enhanced with optional API keys

Requirements

  • Python 3.10+
  • Claude Code or compatible MCP client

Known Limitations & TODO

  • setup.py files: Currently not supported for dependency scanning. The scanner only supports requirements.txt, pyproject.toml, and lock files. Projects using setup.py for dependency management will need to generate a requirements.txt file or migrate to pyproject.toml.

Support

DISCLAIMER: Vulnerability data provided "AS IS" without warranty. Users responsible for verification. See DETAILS.md for full disclaimer.

Similar Cursor MCP Servers You Might Like

Explore more hand-picked MCP servers that work great with Cursor IDE

Ida Pro Mcp

MCP server for IDA Pro, allowing you to perform binary analysis with AI assistants. This plugin implement decompilation, disassembly and allows you to generate malware analysis reports automatically.

2,833 Stars

Mcp Recon

Conversational recon interface and MCP server powered by httpx and asnmap. Supports various reconnaissance levels for domain analysis, security header inspection, certificate analysis, and ASN lookup.

15 Stars

Mcp Panther

MCP server that enables security professionals to interact with Panther's SIEM platform using natural language for writing detections, querying logs, and managing alerts.

23 Stars

Mobsf Mcp Server

A MCP server for MobSF which can be used for static and dynamic analysis of Android and iOS application.

5 Stars

Mcp Security Audit

A powerful MCP (Model Context Protocol) Server that audits npm package dependencies for security vulnerabilities. Built with remote npm registry integration for real-time security checks.

39 Stars

Mcp Server

MCP server for RAD Security, providing AI-powered security insights for Kubernetes and cloud environments. This server provides tools for querying the Rad Security API and retrieving security findings, reports, runtime data and many more.

5 Stars
Privacy Policy   20.40ms  0.89MB