@aikidosec/mcp

MCPcommunity
v1.0.7Aikido SecurityAGPLUpdated 1mo agonpm

Aikido MCP server

A lightweight Model Context Protocol (MCP) server that exposes Aikido’s Code and Secrets Scan as a tool for AI coding agents and IDEs. It lets your agent scan code and returns machine-readable findings you can triage or fix. - Node.js 18 or newer - An Aikido API key (get yours from Aikido Security) The MCP server requires an Aikido API key to authenticate with the Aikido API. You can provide it…

Automatically indexed from public sources. Not yet verified by the developer on Forge.Claim this listing →
14kDownloads/wk
1mo agoLast update
Package
AuthorAikido Security
LicenseAGPL
Version1.0.7
Sourcenpm
Trust Status
B
60/100Good
Listed in Forge index+10/10
Publisher identity verified+0/25
Publisher: run `forge publish` from the package repo to claim ownership
Ed25519 publish signature+0/10
Included automatically when the publisher runs `forge publish`
Domain verification+0/5
Publisher: host /.well-known/forge.json on the package homepage with { "publisher": "<github-login>" }
CVE scan · clean+30/30
Static analysis · clean+20/20
npm provenance (Sigstore)+0/5
Publish from GitHub Actions with the --provenance flag
Paste into Claude Code, Cursor, or any AI assistant to fix all gaps
StatusCommunity-indexed
PublisherUnverified
SignatureUnsigned
Domain
Provenance
Dependencies31 resolved+ · none vulnerable
Tool surface
Security scan✓ Cleanv1.0.10 · 15d ago
EvalsNone
IndexedMay 24, 2026

Verification confirms publisher identity (repo ownership), not code safety. The security scan covers known CVEs and suspicious install scripts — it cannot prove the absence of malicious code.

About

A lightweight Model Context Protocol (MCP) server that exposes Aikido’s Code and Secrets Scan as a tool for AI coding agents and IDEs. It lets your agent scan code and returns machine-readable findings you can triage or fix. - Node.js 18 or newer - An Aikido API key (get yours from Aikido Security) The MCP server requires an Aikido API key to authenticate with the Aikido API. You can provide it in two ways: 1. Via MCP Configuration (Recommended): Set the AIKIDOAPIKEY environment variable in y

Keywords
aikidomcpserversecurity