Stackhawk

Name: Stackhawk
Author: stackhawk

stackhawk/stackhawk-mcp

Let your agent start and inspect StackHawk DAST scans so you catch web app vulnerabilities before customers do.

Overview

StackHawk MCP is an MCP server for the Ship phase that lets your agent interact with StackHawk’s security scanning platform using an API key.

What is this MCP server?

MCP bridge to StackHawk’s security scanning platform
PyPI package stackhawk-mcp v1.1.1 with stdio transport
Requires STACKHAWK_API_KEY for authenticated scan operations
GitHub source at stackhawk/stackhawk-mcp for self-hosted agent setups
Agent-driven workflow for triggering and reading scan results
PyPI package stackhawk-mcp version 1.1.1
stdio transport via published Python package
Open-source repository: github.com/stackhawk/stackhawk-mcp

Compatible agents: Claude Code, Cursor, Codex, any compatible agent

What problem does it solve?

Solo builders forget to run DAST before ship and lose hours triaging vulnerabilities without agent-accessible scan data.

Who is it for?

Indie teams shipping web APIs or SaaS frontends who already use or plan to use StackHawk and want security scans on-demand from the agent.

Skip if: Static sites with no attack surface, mobile-only apps outside StackHawk coverage, or builders who refuse to run external DAST on staging URLs.

What do I get? / Deliverables

Once stackhawk-mcp is installed with STACKHAWK_API_KEY, your agent can drive StackHawk scans and surface findings inside your dev workflow.

Agent-initiated StackHawk scan interactions
Security findings accessible for summarization and fix planning in the agent session

Recommended MCP Servers

1Claw Vault1clawAI/1claw-mcp

1Claw Vault exposes a stdio MCP server (@1claw/mcp) that connects AI agents to HSM-backed secret storage with just-in-ti…2 stars

1passwordCakeRepository/1Password-MCP

The 1Password MCP server lets solo builders wire service-account access into Claude Code, Cursor, or other stdio MCP hos…16 stars

402sentinel Mcpkaditang/402sentinel-mcp

402 Sentinel MCP gives solo builders and agent authors a pre-flight check before honoring x402 payment flows on Base. In…1 stars

A2adependencyinspector Mcpclauxel/a2a-dependency-inspector-mcp

A2A Dependency Inspector MCP is a hosted Clauxel server for builders shipping agent-to-agent (A2A) workflows who must pr…

A2a Governance Bridge Mcp

A2A Governance Bridge is a Model Context Protocol server that exposes governance-oriented tools for multi-agent setups: …

A2aidentitytoll Mcpclauxel/a2a-identity-toll-mcp

A2A Identity Toll MCP is a Clauxel-hosted remote MCP server that acts as an identity and policy toll booth for agent-to-…

Journey fit

Primary fit

Dynamic application security testing belongs in ship, when the app is runnable and exposure risk is real. StackHawk is explicitly a security scanning platform—canonical placement is ship → security, not launch SEO or operate monitoring alone.

How it compares

DAST platform MCP connector, not a local SAST linter skill or generic OWASP cheat sheet.

Common Questions / FAQ

Who is StackHawk MCP for?

Solo and small-team builders who deploy web applications and want Claude Code, Cursor, or similar agents to operate StackHawk scans via MCP.

When should I use StackHawk MCP?

Use it in ship → security when you have a staging or production URL and need agent-assisted dynamic scanning before or after releases.

How do I add StackHawk MCP to my agent?

Install the stackhawk-mcp PyPI package (stdio), set STACKHAWK_API_KEY, and register the server in your MCP client per the stackhawk/stackhawk-mcp repository instructions.

Stackhawk

stackhawk/stackhawk-mcp

Let your agent start and inspect StackHawk DAST scans so you catch web app vulnerabilities before customers do.

Overview

StackHawk MCP is an MCP server for the Ship phase that lets your agent interact with StackHawk’s security scanning platform using an API key.

What is this MCP server?

MCP bridge to StackHawk’s security scanning platform
PyPI package stackhawk-mcp v1.1.1 with stdio transport
Requires STACKHAWK_API_KEY for authenticated scan operations
GitHub source at stackhawk/stackhawk-mcp for self-hosted agent setups
Agent-driven workflow for triggering and reading scan results
PyPI package stackhawk-mcp version 1.1.1
stdio transport via published Python package
Open-source repository: github.com/stackhawk/stackhawk-mcp

Compatible agents: Claude Code, Cursor, Codex, any compatible agent

What problem does it solve?

Solo builders forget to run DAST before ship and lose hours triaging vulnerabilities without agent-accessible scan data.

Who is it for?

Indie teams shipping web APIs or SaaS frontends who already use or plan to use StackHawk and want security scans on-demand from the agent.

Skip if: Static sites with no attack surface, mobile-only apps outside StackHawk coverage, or builders who refuse to run external DAST on staging URLs.

What do I get? / Deliverables

Once stackhawk-mcp is installed with STACKHAWK_API_KEY, your agent can drive StackHawk scans and surface findings inside your dev workflow.

Agent-initiated StackHawk scan interactions
Security findings accessible for summarization and fix planning in the agent session

Recommended MCP Servers

1Claw Vault1clawAI/1claw-mcp

1Claw Vault exposes a stdio MCP server (@1claw/mcp) that connects AI agents to HSM-backed secret storage with just-in-ti…2 stars

1passwordCakeRepository/1Password-MCP

The 1Password MCP server lets solo builders wire service-account access into Claude Code, Cursor, or other stdio MCP hos…16 stars

402sentinel Mcpkaditang/402sentinel-mcp

402 Sentinel MCP gives solo builders and agent authors a pre-flight check before honoring x402 payment flows on Base. In…1 stars

A2adependencyinspector Mcpclauxel/a2a-dependency-inspector-mcp

A2A Dependency Inspector MCP is a hosted Clauxel server for builders shipping agent-to-agent (A2A) workflows who must pr…

A2a Governance Bridge Mcp

A2A Governance Bridge is a Model Context Protocol server that exposes governance-oriented tools for multi-agent setups: …

A2aidentitytoll Mcpclauxel/a2a-identity-toll-mcp

A2A Identity Toll MCP is a Clauxel-hosted remote MCP server that acts as an identity and policy toll booth for agent-to-…

Journey fit

Primary fit

How it compares

DAST platform MCP connector, not a local SAST linter skill or generic OWASP cheat sheet.

Common Questions / FAQ

Who is StackHawk MCP for?

Solo and small-team builders who deploy web applications and want Claude Code, Cursor, or similar agents to operate StackHawk scans via MCP.

When should I use StackHawk MCP?

Use it in ship → security when you have a staging or production URL and need agent-assisted dynamic scanning before or after releases.

How do I add StackHawk MCP to my agent?

Install the stackhawk-mcp PyPI package (stdio), set STACKHAWK_API_KEY, and register the server in your MCP client per the stackhawk/stackhawk-mcp repository instructions.

Overview

What is this MCP server?

What problem does it solve?

Who is it for?

What do I get? / Deliverables

Recommended MCP Servers

Journey fit

Who is StackHawk MCP for?

When should I use StackHawk MCP?

How do I add StackHawk MCP to my agent?

This week for builders

Overview

What is this MCP server?

What problem does it solve?

Who is it for?

What do I get? / Deliverables

Recommended MCP Servers

Journey fit

Who is StackHawk MCP for?

When should I use StackHawk MCP?

How do I add StackHawk MCP to my agent?