AI Scanner

Name: AI Scanner
Author: Aakashbhardwaj27

Aakashbhardwaj27/ai-scanner-mcp

Run an agent-driven pass over your repo to find LLM SDK usage, leaked API tokens, and hardcoded secrets before release.

Overview

AI Scanner MCP is a Ship-phase MCP server that scans repositories for LLM SDK usage, exposed API tokens, and hardcoded secrets.

What is this MCP server?

Scans codebases for LLM and AI SDK adoption patterns via ai-scanner-mcp
Flags exposed API tokens and hardcoded secrets suitable for agent-led audits
stdio npm package ai-scanner-mcp version 1.0.3; server version 1.0.6
GitHub source at Aakashbhardwaj27/ai-scanner-mcp
Developer security MCP—not a production monitoring dashboard
Server version 1.0.6 on MCP registry
npm identifier ai-scanner-mcp at package version 1.0.3
stdio transport; GitHub repository ai-scanner-mcp

Compatible agents: Claude Code, Cursor, Codex, Windsurf

Community signal: 1 GitHub stars.

What problem does it solve?

Agent-heavy repos accumulate AI SDK imports and .env-style leaks that are easy to miss in a solo pre-ship review.

Who is it for?

Solo builders shipping LLM-powered apps who want MCP-native secret and SDK discovery in the same session as code fixes.

Skip if: Organizations that already run enterprise SAST with policy gates only, or repos with no AI dependencies to audit.

What do I get? / Deliverables

Your agent can run structured scans and surface secret and AI-usage risks before you tag a release or open-source the tree.

Agent-triggered scan results for AI SDK usage
Reported exposed tokens and hardcoded secret locations
Actionable file-level leads for remediation before ship

Recommended MCP Servers

1Claw Vault1clawAI/1claw-mcp

1Claw Vault exposes a stdio MCP server (@1claw/mcp) that connects AI agents to HSM-backed secret storage with just-in-ti…2 stars

1passwordCakeRepository/1Password-MCP

The 1Password MCP server lets solo builders wire service-account access into Claude Code, Cursor, or other stdio MCP hos…16 stars

402sentinel Mcpkaditang/402sentinel-mcp

402 Sentinel MCP gives solo builders and agent authors a pre-flight check before honoring x402 payment flows on Base. In…1 stars

A2adependencyinspector Mcpclauxel/a2a-dependency-inspector-mcp

A2A Dependency Inspector MCP is a hosted Clauxel server for builders shipping agent-to-agent (A2A) workflows who must pr…

A2a Governance Bridge Mcp

A2A Governance Bridge is a Model Context Protocol server that exposes governance-oriented tools for multi-agent setups: …

A2aidentitytoll Mcpclauxel/a2a-identity-toll-mcp

A2A Identity Toll MCP is a Clauxel-hosted remote MCP server that acts as an identity and policy toll booth for agent-to-…

Journey fit

Primary fit

Secret and AI-surface scanning belongs in Ship when you harden what you are about to deploy, not during initial idea research. Token exposure and AI SDK footprint are classic pre-release security checks in the security subphase.

How it compares

Focused codebase secret and AI-SDK scanner MCP, not cloud runtime monitoring or generic pentest automation.

Common Questions / FAQ

Who is AI Scanner MCP for?

Developers using Claude Code or similar agents who need quick LLM-footprint and secret-leak scans on their own repositories.

When should I use AI Scanner MCP?

Use it in Ship security checks before releases, public repo pushes, or when onboarding a new contractor to an AI codebase.

How do I add AI Scanner MCP to my agent?

Install ai-scanner-mcp from npm, point your MCP client at the stdio server, and invoke scan tools against your project root from the agent.

AI Scanner

Aakashbhardwaj27/ai-scanner-mcp

Run an agent-driven pass over your repo to find LLM SDK usage, leaked API tokens, and hardcoded secrets before release.

Overview

AI Scanner MCP is a Ship-phase MCP server that scans repositories for LLM SDK usage, exposed API tokens, and hardcoded secrets.

What is this MCP server?

Scans codebases for LLM and AI SDK adoption patterns via ai-scanner-mcp
Flags exposed API tokens and hardcoded secrets suitable for agent-led audits
stdio npm package ai-scanner-mcp version 1.0.3; server version 1.0.6
GitHub source at Aakashbhardwaj27/ai-scanner-mcp
Developer security MCP—not a production monitoring dashboard
Server version 1.0.6 on MCP registry
npm identifier ai-scanner-mcp at package version 1.0.3
stdio transport; GitHub repository ai-scanner-mcp

Compatible agents: Claude Code, Cursor, Codex, Windsurf

Community signal: 1 GitHub stars.

What problem does it solve?

Agent-heavy repos accumulate AI SDK imports and .env-style leaks that are easy to miss in a solo pre-ship review.

Who is it for?

Solo builders shipping LLM-powered apps who want MCP-native secret and SDK discovery in the same session as code fixes.

Skip if: Organizations that already run enterprise SAST with policy gates only, or repos with no AI dependencies to audit.

What do I get? / Deliverables

Your agent can run structured scans and surface secret and AI-usage risks before you tag a release or open-source the tree.

Agent-triggered scan results for AI SDK usage
Reported exposed tokens and hardcoded secret locations
Actionable file-level leads for remediation before ship

Recommended MCP Servers

1Claw Vault1clawAI/1claw-mcp

1Claw Vault exposes a stdio MCP server (@1claw/mcp) that connects AI agents to HSM-backed secret storage with just-in-ti…2 stars

1passwordCakeRepository/1Password-MCP

The 1Password MCP server lets solo builders wire service-account access into Claude Code, Cursor, or other stdio MCP hos…16 stars

402sentinel Mcpkaditang/402sentinel-mcp

402 Sentinel MCP gives solo builders and agent authors a pre-flight check before honoring x402 payment flows on Base. In…1 stars

A2adependencyinspector Mcpclauxel/a2a-dependency-inspector-mcp

A2A Dependency Inspector MCP is a hosted Clauxel server for builders shipping agent-to-agent (A2A) workflows who must pr…

A2a Governance Bridge Mcp

A2A Governance Bridge is a Model Context Protocol server that exposes governance-oriented tools for multi-agent setups: …

A2aidentitytoll Mcpclauxel/a2a-identity-toll-mcp

A2A Identity Toll MCP is a Clauxel-hosted remote MCP server that acts as an identity and policy toll booth for agent-to-…

Journey fit

Primary fit

How it compares

Focused codebase secret and AI-SDK scanner MCP, not cloud runtime monitoring or generic pentest automation.

Common Questions / FAQ

Who is AI Scanner MCP for?

Developers using Claude Code or similar agents who need quick LLM-footprint and secret-leak scans on their own repositories.

When should I use AI Scanner MCP?

Use it in Ship security checks before releases, public repo pushes, or when onboarding a new contractor to an AI codebase.

How do I add AI Scanner MCP to my agent?

Install ai-scanner-mcp from npm, point your MCP client at the stdio server, and invoke scan tools against your project root from the agent.

Overview

What is this MCP server?

What problem does it solve?

Who is it for?

What do I get? / Deliverables

Recommended MCP Servers

Journey fit

Who is AI Scanner MCP for?

When should I use AI Scanner MCP?

How do I add AI Scanner MCP to my agent?

This week for builders

Overview

What is this MCP server?

What problem does it solve?

Who is it for?

What do I get? / Deliverables

Recommended MCP Servers

Journey fit

Who is AI Scanner MCP for?

When should I use AI Scanner MCP?

How do I add AI Scanner MCP to my agent?