McpMux
Back to Registry

Security MCP Servers

Browse 17 Model Context Protocol servers for security. Each server works with Cursor, Claude, VS Code, ChatGPT, Windsurf, JetBrains, and any MCP-compatible AI client. Install with one click using McpMux.

1Password (npx)
Access secrets from 1Password vaults. List vaults, retrieve items, and search for credentials using a service account token.
Tools
LocalAPI Key
Aikido Security (npx)
Scan code and secrets with Aikido Security directly from your AI coding agent. Exposes Aikido's Code and Secrets Scan as an MCP tool returning machine-readable findings you can triage, fix, or ignore.
Tools
LocalAPI Key
Auth0 (npx)
Manage your Auth0 tenant through natural language: applications, APIs (resource servers), actions, forms, and logs via the Auth0 Management API. Authentication uses an OAuth 2.0 device-authorization browser flow handled by the server; tokens are stored in your OS keychain.
Tools
LocalOAuth
Bitwarden (npx)
Securely access your Bitwarden vault and administer your organization through the Bitwarden CLI and Public API. Manage vault items, folders, collections, Sends, and password generation, plus organization members, groups, policies, and audit logs.
Tools
LocalAPI Key
Codacy (npx)
Connect to Codacy to analyze code quality and security, run static analysis (SAST, secrets, dependency, and IaC scans), browse repositories, list issues, and surface coverage data from your Codacy account via npx.
Tools
LocalAPI Key
DB Query Guard MCP
Governed database query review, SQL simulation, approvals, and audits as a paid remote MCP.
Tools
RemoteAPI Key
Doppler (npx)
Manage Doppler secrets, projects, configs, and environments through the Doppler API. Tools are auto-generated from the Doppler OpenAPI spec and support read-only and project/config scoping.
Tools
LocalAPI Key
Infisical (npx)
Manage Infisical secrets, projects, environments, and folders through the Infisical API. Authenticates with a machine identity using Infisical Universal Auth.
Tools
LocalAPI Key
MCP Risk Ledger MCP
MCP server intake risk reports, tool review, approvals, and readiness as a paid remote MCP.
Tools
RemoteAPI Key
MCPShield
Security scanner for MCP servers - detects tool poisoning, prompt injection, and 90+ vulnerability patterns.
Tools
Local
PromptGuard Scan MCP
Remote MCP for paid LLM security checks, prompt-injection scanning, jailbreak review, leakage signals, and release-readiness reporting.
Tools
RemoteAPI Key
Semgrep (uvx)
Run Semgrep static analysis through MCP. Scan code for security vulnerabilities with 5,000+ built-in rules, write and run custom rules, inspect ASTs, and fetch findings from the Semgrep AppSec Platform.
ToolsResourcesPrompts
LocalAPI Key
ServerCard Trust MCP
MCP server-card validation, auth checks, trust packets, and readiness as a paid remote MCP.
Tools
RemoteAPI Key
Snyk (npx)
Official Snyk MCP server, shipped inside the Snyk CLI. Scans code, open-source dependencies, containers, and IaC for vulnerabilities directly from your AI agent, surfacing security issues and fix guidance during development.
Tools
LocalAPI Key
Socket (npx)
Query Socket.dev for dependency security scores, supply-chain risk, malware/typosquat threat feeds, and package metadata across npm, PyPI, Cargo, Maven, NuGet, RubyGems, Go, and more. Runs locally via npx.
Tools
LocalAPI Key
SonarQube (Docker)
Official SonarQube MCP server (Docker) connecting AI agents to SonarQube Cloud and SonarQube Server for code quality and security data. Analyze code snippets, retrieve issues and security hotspots, browse projects, and inspect quality gates.
Tools
LocalAPI Key
Vault (Docker)
Connect to HashiCorp Vault via Docker to manage secrets and secrets engines. Read, write, list, and delete key-value secrets, create and manage mounts, and handle PKI certificates (issuers, roles, certificate issuance) in an isolated container.
Tools
LocalAPI Key

About Security MCP Servers

Security MCP servers connect AI clients like Cursor, Claude Desktop, VS Code, ChatGPT, Windsurf, and JetBrains to security tools and services through the Model Context Protocol. These servers provide AI-accessible tools, resources, and prompts that enable your AI assistant to interact with security platforms directly.

All security MCP servers in the McpMux registry can be installed with one click. McpMux handles configuration, credential encryption, and client connections automatically. No manual JSON editing required.

Browse Other Categories

Install Security MCP Servers with McpMux

One-click install for all security servers. Works with Cursor, Claude, VS Code, ChatGPT, Windsurf, and JetBrains.