Vibescan Mcp Server

Name: Vibescan Mcp Server
Author: Aguantar

Aguantar/vibescan-mcp-server

Run VibeScan secret-leak and security-issue scans on your repo from the agent before you ship or open-source.

Overview

io.github.Aguantar/vibescan-mcp-server is a MCP server for the Ship phase that runs VibeScan to find leaked secrets and security issues in your project.

What is this MCP server?

MCP wrapper for VibeScan project scanning (PyPI vibescan-mcp-server, v0.1.0)
Stdio transport for Claude Code and compatible agents
Detects leaked secrets and broader security issues in project trees
GitHub source: Aguantar/vibescan-mcp-server
No extra env vars declared in server.json—local project path drives scans
Server version 0.1.0
Transport: stdio
PyPI identifier: vibescan-mcp-server

Compatible agents: Claude Code, Cursor, Codex, any compatible agent

Community signal: 1 GitHub stars.

What problem does it solve?

Secrets and security misconfigs slip into indie codebases because you lack a one-click scan inside the agent session where you already edit files.

Who is it for?

Solo developers shipping frequently who want agent-assisted secret scanning without leaving the MCP toolchain.

Skip if: Enterprises needing formal SOC2 evidence collection only from a centralized SAST platform with no local agent workflow.

What do I get? / Deliverables

After registering the stdio server, you can trigger VibeScan-driven reviews and remediate findings before deploy or release.

VibeScan-powered security and secret findings via MCP
Actionable issue list for agent-guided fixes
Repeatable on-demand scans during Ship hardening

Recommended MCP Servers

1Claw Vault1clawAI/1claw-mcp

1Claw Vault exposes a stdio MCP server (@1claw/mcp) that connects AI agents to HSM-backed secret storage with just-in-ti…2 stars

1passwordCakeRepository/1Password-MCP

The 1Password MCP server lets solo builders wire service-account access into Claude Code, Cursor, or other stdio MCP hos…16 stars

402sentinel Mcpkaditang/402sentinel-mcp

402 Sentinel MCP gives solo builders and agent authors a pre-flight check before honoring x402 payment flows on Base. In…1 stars

A2adependencyinspector Mcpclauxel/a2a-dependency-inspector-mcp

A2A Dependency Inspector MCP is a hosted Clauxel server for builders shipping agent-to-agent (A2A) workflows who must pr…

A2a Governance Bridge Mcp

A2A Governance Bridge is a Model Context Protocol server that exposes governance-oriented tools for multi-agent setups: …

A2aidentitytoll Mcpclauxel/a2a-identity-toll-mcp

A2A Identity Toll MCP is a Clauxel-hosted remote MCP server that acts as an identity and policy toll booth for agent-to-…

Journey fit

Primary fit

Pre-release and pre-commit security scanning belongs in Ship when you harden what you are about to deploy or share. Security subphase covers leaked API keys, misconfigurations, and issue findings—not broad penetration testing in isolation.

How it compares

VibeScan MCP adapter for interactive repo scans, not a full CI security pipeline or manual pentest engagement.

Common Questions / FAQ

Who is vibescan-mcp-server for?

Indie and solo builders using MCP agents who want VibeScan-style secret and security checks on demand in the repo they are editing.

When should I use vibescan-mcp-server?

Use it in Ship before releases, after adding integrations with API keys, or when open-sourcing a project.

How do I add vibescan-mcp-server to my agent?

Install vibescan-mcp-server from PyPI, register the stdio MCP server in your agent config, and invoke scan tools against your workspace path.

Vibescan Mcp Server

Aguantar/vibescan-mcp-server

Run VibeScan secret-leak and security-issue scans on your repo from the agent before you ship or open-source.

Overview

io.github.Aguantar/vibescan-mcp-server is a MCP server for the Ship phase that runs VibeScan to find leaked secrets and security issues in your project.

What is this MCP server?

MCP wrapper for VibeScan project scanning (PyPI vibescan-mcp-server, v0.1.0)
Stdio transport for Claude Code and compatible agents
Detects leaked secrets and broader security issues in project trees
GitHub source: Aguantar/vibescan-mcp-server
No extra env vars declared in server.json—local project path drives scans
Server version 0.1.0
Transport: stdio
PyPI identifier: vibescan-mcp-server

Compatible agents: Claude Code, Cursor, Codex, any compatible agent

Community signal: 1 GitHub stars.

What problem does it solve?

Secrets and security misconfigs slip into indie codebases because you lack a one-click scan inside the agent session where you already edit files.

Who is it for?

Solo developers shipping frequently who want agent-assisted secret scanning without leaving the MCP toolchain.

Skip if: Enterprises needing formal SOC2 evidence collection only from a centralized SAST platform with no local agent workflow.

What do I get? / Deliverables

After registering the stdio server, you can trigger VibeScan-driven reviews and remediate findings before deploy or release.

VibeScan-powered security and secret findings via MCP
Actionable issue list for agent-guided fixes
Repeatable on-demand scans during Ship hardening

Recommended MCP Servers

1Claw Vault1clawAI/1claw-mcp

1Claw Vault exposes a stdio MCP server (@1claw/mcp) that connects AI agents to HSM-backed secret storage with just-in-ti…2 stars

1passwordCakeRepository/1Password-MCP

The 1Password MCP server lets solo builders wire service-account access into Claude Code, Cursor, or other stdio MCP hos…16 stars

402sentinel Mcpkaditang/402sentinel-mcp

402 Sentinel MCP gives solo builders and agent authors a pre-flight check before honoring x402 payment flows on Base. In…1 stars

A2adependencyinspector Mcpclauxel/a2a-dependency-inspector-mcp

A2A Dependency Inspector MCP is a hosted Clauxel server for builders shipping agent-to-agent (A2A) workflows who must pr…

A2a Governance Bridge Mcp

A2A Governance Bridge is a Model Context Protocol server that exposes governance-oriented tools for multi-agent setups: …

A2aidentitytoll Mcpclauxel/a2a-identity-toll-mcp

A2A Identity Toll MCP is a Clauxel-hosted remote MCP server that acts as an identity and policy toll booth for agent-to-…

Journey fit

Primary fit

How it compares

VibeScan MCP adapter for interactive repo scans, not a full CI security pipeline or manual pentest engagement.

Common Questions / FAQ

Who is vibescan-mcp-server for?

Indie and solo builders using MCP agents who want VibeScan-style secret and security checks on demand in the repo they are editing.

When should I use vibescan-mcp-server?

Use it in Ship before releases, after adding integrations with API keys, or when open-sourcing a project.

How do I add vibescan-mcp-server to my agent?

Install vibescan-mcp-server from PyPI, register the stdio MCP server in your agent config, and invoke scan tools against your workspace path.

Overview

What is this MCP server?

What problem does it solve?

Who is it for?

What do I get? / Deliverables

Recommended MCP Servers

Journey fit

Who is vibescan-mcp-server for?

When should I use vibescan-mcp-server?

How do I add vibescan-mcp-server to my agent?

This week for builders

Overview

What is this MCP server?

What problem does it solve?

Who is it for?

What do I get? / Deliverables

Recommended MCP Servers

Journey fit

Who is vibescan-mcp-server for?

When should I use vibescan-mcp-server?

How do I add vibescan-mcp-server to my agent?