qianniuspace/mcp-security-audit

Overview

A Model Context Protocol server that checks npm package dependencies for known security vulnerabilities. It integrates with the remote npm registry to provide real-time audit results for developers using AI-assisted workflows.

Best for

Best for
Developers using MCP-compatible AI tools to audit npm package security

Use cases

• Scanning npm dependencies before deployment
• Integrating security checks into AI coding assistants
• Automating vulnerability detection in CI pipelines

Notes

A Model Context Protocol server that checks npm package dependencies for known security vulnerabilities. It integrates with the remote npm registry to provide real-time audit results for developers using AI-assisted workflows.

53 stars on GitHub. Last updated 2025-07-18. Licensed MIT.

Use cases

• Scanning npm dependencies before deployment
• Integrating security checks into AI coding assistants
• Automating vulnerability detection in CI pipelines

Pros

• Real-time vulnerability checks via npm registry
• Lightweight MCP server that works with AI tools
• Open source with TypeScript

Cons

• Limited to npm packages only
• Requires network access to npm registry
• Relatively low community adoption (53 stars)

Indexed from awesome-mcp-servers-punkpeye and enriched against its public facts.