securescan
Verified Safeby aphoticshaman
Overview
AI-powered security vulnerability scanner for static code analysis and dependency scanning.
Installation
python serve.pySecurity Notes
The `app.py` script is a local CLI tool designed to detect vulnerabilities in user-provided code using regex patterns; it does not expose a network interface for its scanning logic. The `serve.py` runs a basic static file server on localhost to host the web interface. Neither component introduces significant server-side security risks. The `eval` patterns and hardcoded secrets identified in the `SAMPLE_CODE` are vulnerabilities that the scanner *detects*, not issues within the scanner's own execution. The 'AI-powered' claim is not demonstrably supported by the provided `app.py` code, which relies on regex for detection.
Similar Servers
mcp-watch
A comprehensive security scanner for Model Context Protocol (MCP) servers, detecting various vulnerabilities in their implementations.
VibeShift
VibeShift is an intelligent security agent that integrates with AI coding assistants to analyze AI-generated code for vulnerabilities, suggest remediations, and facilitate web test recording, crawling, and execution.
pentestMCP
This MCP server enables AI agents to perform automated and interactive penetration testing tasks by exposing a suite of security assessment utilities as callable tools.
mcp-contrast
This server acts as a Microservice Chassis Platform (MCP) host, providing AI agents with a set of tools to interact with the Contrast Security platform. It enables querying and managing application security data, including vulnerabilities, attacks, SAST results, software composition analysis (SCA), and route coverage.