ggmcp
Verified Safeby GitGuardian
Overview
A focused MCP server for developers, providing remediation tools for secrets detected in code and honeytoken management capabilities.
Installation
uvx --from 'git+https://github.com/GitGuardian/ggmcp.git' developer-mcp-serverEnvironment Variables
- GITGUARDIAN_PERSONAL_ACCESS_TOKEN
- GITGUARDIAN_URL
- ENABLE_LOCAL_OAUTH
- MCP_PORT
- SENTRY_DSN
Security Notes
Developed by GitGuardian, a security company, the server incorporates robust security practices. It supports OAuth 2.0 PKCE and Personal Access Token (PAT) authentication, with strict scope-based access control for individual tools. Sensitive data is redacted in VCR test cassettes, and development workflows leverage `ggshield` pre-commit/pre-push hooks to prevent secret leaks in the repository itself. The server is designed to operate with 'read-only' permissions for AI agents by default, minimizing potential risks. There is no evidence of dangerous patterns like `eval()` or dynamic code execution from untrusted input in the core server logic.
Similar Servers
copilot-security-instructions
This MCP server provides a toolkit to guide GitHub Copilot toward secure coding practices by offering customizable security-focused prompts and agents for integration into development workflows.
mcp-maintainer-toolkit
This server provides a Model Context Protocol (MCP) interface with various tools and resources designed to assist in maintaining, testing, and developing MCP repositories and clients.
mcp-safe-run
Securely launches Model Context Protocol (MCP) servers by dynamically resolving and injecting sensitive credentials (secrets) from various sources (environment, files, OS keychain) into the server's environment.
inspector-assessment
Provides a comprehensive automated assessment platform for Model Context Protocol (MCP) servers, analyzing their security, functionality, protocol compliance, documentation, and various extended metrics. It acts as an inspector and auditing tool for MCP server developers and maintainers.