vibeSafe/vibeSafe-mcp
If you are the rightful owner of vibeSafe-mcp and would like to certify it and/or have it hosted online, please leave a comment on the right or send an email to henry@mcphub.com.
VibeSafe MCP Server is part of the VibeSafe OSS Stack, designed to enable AI agents and LLM-powered IDEs to perform real-time security scans on codebases.
Tools
Functions exposed to the LLM to take actions
secret-scan
Detects hardcoded secrets like AWS keys, JWTs, SSH keys, and .env leaks.
secure-install
Prevents slopsquatting/typosquatting by analyzing npm packages before install.
vuln-scan
Checks dependencies against the OSV.dev vulnerability database.
config-scan
Detects insecure flags like DEBUG=true or permissive CORS in JSON/YAML configs.
http-timeout-scan
Warns on missing timeouts in axios, fetch, got, etc.
Prompts
Interactive templates invoked by user choice
No prompts
Resources
Contextual data attached and managed by the client