Android Security Analyzer

Name: Android Security Analyzer
Author: ako2345

ako2345/android-security-analyzer

Run static security analysis on Android app source from your coding agent before release.

Overview

Android Security Analyzer is a Ship-phase MCP server that performs static security analysis on Android source code through a remote HTTP MCP endpoint.

What is this MCP server?

Remote streamable-http MCP—no local server install required
Focused on Android source static security analysis
Pairs with agent-driven code review in mobile repos
Version 1.0.0 with published MCP schema metadata
Hosted endpoint at android-security-analyzer.ako-labs.workers.dev
MCP server version 1.0.0
Transport: remote streamable-http (no stdio package in manifest)
Repository: github.com/ako2345/android-security-analyzer

Compatible agents: Claude Code, Cursor, Codex, any compatible agent

Community signal: 2 GitHub stars.

What problem does it solve?

Solo mobile builders rarely have time to run consistent static security passes across every Android change before shipping.

Who is it for?

Indie Android developers who want agent-accessible SAST without maintaining a local analysis stack.

Skip if: Teams that need on-prem-only analysis, iOS-only projects, or full dynamic/runtime mobile pentesting.

What do I get? / Deliverables

After you add the remote MCP server, your agent can invoke Android static security analysis from the same session where you edit and review code.

Agent-invokable static security analysis for Android source
Integrated security feedback inside your coding session

Recommended MCP Servers

1Claw Vault1clawAI/1claw-mcp

1Claw Vault exposes a stdio MCP server (@1claw/mcp) that connects AI agents to HSM-backed secret storage with just-in-ti…2 stars

1passwordCakeRepository/1Password-MCP

The 1Password MCP server lets solo builders wire service-account access into Claude Code, Cursor, or other stdio MCP hos…16 stars

402sentinel Mcpkaditang/402sentinel-mcp

402 Sentinel MCP gives solo builders and agent authors a pre-flight check before honoring x402 payment flows on Base. In…1 stars

A2adependencyinspector Mcpclauxel/a2a-dependency-inspector-mcp

A2A Dependency Inspector MCP is a hosted Clauxel server for builders shipping agent-to-agent (A2A) workflows who must pr…

A2a Governance Bridge Mcp

A2A Governance Bridge is a Model Context Protocol server that exposes governance-oriented tools for multi-agent setups: …

A2aidentitytoll Mcpclauxel/a2a-identity-toll-mcp

A2A Identity Toll MCP is a Clauxel-hosted remote MCP server that acts as an identity and policy toll booth for agent-to-…

Journey fit

Primary fit

Security review belongs in Ship so mobile apps are checked before they reach users or stores. Static analysis of Android code is a security gate, not feature implementation.

How it compares

Remote security-analysis MCP, not a general Android build or Gradle skill.

Common Questions / FAQ

Who is Android Security Analyzer for?

Solo and small-team Android builders using Claude Code, Cursor, or other MCP clients who want static security checks from the editor.

When should I use Android Security Analyzer?

Use it during Ship—before store submission or production rollout—when you want automated static review of Android source in your agent workflow.

How do I add Android Security Analyzer to my agent?

Register the remote MCP URL https://android-security-analyzer.ako-labs.workers.dev/mcp as a streamable-http server in your agent’s MCP configuration.

Android Security Analyzer

ako2345/android-security-analyzer

Run static security analysis on Android app source from your coding agent before release.

Overview

Android Security Analyzer is a Ship-phase MCP server that performs static security analysis on Android source code through a remote HTTP MCP endpoint.

What is this MCP server?

Remote streamable-http MCP—no local server install required
Focused on Android source static security analysis
Pairs with agent-driven code review in mobile repos
Version 1.0.0 with published MCP schema metadata
Hosted endpoint at android-security-analyzer.ako-labs.workers.dev
MCP server version 1.0.0
Transport: remote streamable-http (no stdio package in manifest)
Repository: github.com/ako2345/android-security-analyzer

Compatible agents: Claude Code, Cursor, Codex, any compatible agent

Community signal: 2 GitHub stars.

What problem does it solve?

Solo mobile builders rarely have time to run consistent static security passes across every Android change before shipping.

Who is it for?

Indie Android developers who want agent-accessible SAST without maintaining a local analysis stack.

Skip if: Teams that need on-prem-only analysis, iOS-only projects, or full dynamic/runtime mobile pentesting.

What do I get? / Deliverables

After you add the remote MCP server, your agent can invoke Android static security analysis from the same session where you edit and review code.

Agent-invokable static security analysis for Android source
Integrated security feedback inside your coding session

Recommended MCP Servers

1Claw Vault1clawAI/1claw-mcp

1Claw Vault exposes a stdio MCP server (@1claw/mcp) that connects AI agents to HSM-backed secret storage with just-in-ti…2 stars

1passwordCakeRepository/1Password-MCP

The 1Password MCP server lets solo builders wire service-account access into Claude Code, Cursor, or other stdio MCP hos…16 stars

402sentinel Mcpkaditang/402sentinel-mcp

402 Sentinel MCP gives solo builders and agent authors a pre-flight check before honoring x402 payment flows on Base. In…1 stars

A2adependencyinspector Mcpclauxel/a2a-dependency-inspector-mcp

A2A Dependency Inspector MCP is a hosted Clauxel server for builders shipping agent-to-agent (A2A) workflows who must pr…

A2a Governance Bridge Mcp

A2A Governance Bridge is a Model Context Protocol server that exposes governance-oriented tools for multi-agent setups: …

A2aidentitytoll Mcpclauxel/a2a-identity-toll-mcp

A2A Identity Toll MCP is a Clauxel-hosted remote MCP server that acts as an identity and policy toll booth for agent-to-…

Journey fit

Primary fit

Security review belongs in Ship so mobile apps are checked before they reach users or stores. Static analysis of Android code is a security gate, not feature implementation.

How it compares

Remote security-analysis MCP, not a general Android build or Gradle skill.

Common Questions / FAQ

Who is Android Security Analyzer for?

Solo and small-team Android builders using Claude Code, Cursor, or other MCP clients who want static security checks from the editor.

When should I use Android Security Analyzer?

Use it during Ship—before store submission or production rollout—when you want automated static review of Android source in your agent workflow.

How do I add Android Security Analyzer to my agent?

Register the remote MCP URL https://android-security-analyzer.ako-labs.workers.dev/mcp as a streamable-http server in your agent’s MCP configuration.

Overview

What is this MCP server?

What problem does it solve?

Who is it for?

What do I get? / Deliverables

Recommended MCP Servers

Journey fit

Who is Android Security Analyzer for?

When should I use Android Security Analyzer?

How do I add Android Security Analyzer to my agent?

This week for builders

Overview

What is this MCP server?

What problem does it solve?

Who is it for?

What do I get? / Deliverables

Recommended MCP Servers

Journey fit

Who is Android Security Analyzer for?

When should I use Android Security Analyzer?

How do I add Android Security Analyzer to my agent?