Spaces:

MCP-1st-Birthday
/

simple-security-scanner

Sleeping

App Files Files Community

simple-security-scanner / README.md

garibong

add X post link

1ad385b 5 months ago

preview code

raw

history blame contribute delete

1.6 kB

A newer version of the Gradio SDK is available: 6.13.0

Upgrade

metadata

title: Simple Security Scanner
emoji: 🔒
colorFrom: red
colorTo: yellow
sdk: gradio
sdk_version: 5.32.0
app_file: app.py
pinned: false
license: mit
short_description: Scan Python code for security vulnerabilities with MCP.
tags:
  - building-mcp-track-consumer

🔒 Simple Security Scanner MCP

An MCP server that scans Python code for security vulnerabilities and provides beginner-friendly explanations.

Link to demo : https://youtu.be/ztuoQJjGu1U?si=NtcwfTDb76RkRD8V
X Post: https://x.com/GaribongMan/status/1994962586878841171

Features

Pattern-based Detection: Hardcoded secrets, path traversal, insecure deserialization, and more
SQL Injection Detection: Precise detection using AST analysis
Beginner-friendly Explanations: Easy-to-understand descriptions of what's wrong, why it's dangerous, and how to fix it

MCP Tool

`scan_security`

Analyzes Python code for security vulnerabilities.

Inputs:

code (string): Python source code to analyze
severity_threshold (string): Minimum severity level to report (CRITICAL, HIGH, MEDIUM, LOW)

Output:

Beginner-friendly explanation of found vulnerabilities

Usage

Web UI

Visit this Space and enter your code to scan.

MCP Client

Connect from MCP clients like Claude Desktop with the following configuration:

{
  "mcpServers": {
    "security-scanner": {
      "command": "npx",
      "args": ["mcp-remote", "https://mcp-1st-birthday-simple-security-scanner.hf.space/gradio_api/mcp/sse"]
    }
  }
}

License

This project is licensed under the MIT License