Skip to content

v1.0.0 — Security Advisory MCP

Choose a tag to compare

View all tags
@jkmaina jkmaina released this 24 May 02:33
· 2 commits to main since this release
v1.0.0
beaed29

6 MCP tools for vulnerability management. Queries OSV.dev (covers GitHub Advisory DB, RustSec, NVD).

Tools

  • search_advisories — search by package/ecosystem/keyword
  • get_advisory — full details by CVE/GHSA/RUSTSEC/OSV ID
  • map_vulnerability_to_dependency — scan lockfiles against advisories
  • rank_security_risk — weighted risk scoring (severity × exposure)
  • generate_patch_plan — upgrade path + rollout order
  • export_security_evidence — compliance/audit bundles

Verified

  • 14 advisories found for hyper on crates.io
  • Risk scoring: 5.5/10 (medium) for direct + internet-exposed
  • Patch plan: upgrade to 0.14.10

Install

cargo install mcp-security-advisory

No API key needed.

Assets 2
Loading