anchore/grype-mcp
If you are the rightful owner of grype-mcp and would like to certify it and/or have it hosted online, please leave a comment on the right or send an email to henry@mcphub.com.
Grype MCP Server integrates the Grype vulnerability scanner into AI-assisted development workflows using the Model Context Protocol (MCP).
Tools
Functions exposed to the LLM to take actions
find_grype
Check if Grype is installed and get version info
update_grype
Install or update Grype to the latest version
get_db_info
Get vulnerability database status and version info
update_db
Update the vulnerability database
scan_dir
Scan project directories for vulnerabilities
scan_purl
Scan specific packages using PURL format
scan_image
Scan container images for vulnerabilities
search_vulns
Search the vulnerability database by CVE, package name, or CPE
get_vuln_details
Get detailed information about specific CVEs
Prompts
Interactive templates invoked by user choice
No prompts
Resources
Contextual data attached and managed by the client