Enterprise-grade security analysis MCP server hub for IDE integration

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for codesecure from gravatar.com codesecure

Unverified details

These details have not been verified by PyPI
Meta
  • License: MIT License (MIT)
  • Requires: Python >=3.10
  • Provides-Extra: scanners , google , aws , all
Classifiers
Report project as malware

Project description

CodeSecure MCP Server 🔒

Enterprise-grade security analysis MCP server hub for IDE integration, powered by FastMCP. CodeSecure provides a unified interface for security scanning, dependency auditing, and AI-powered remediation guidance.

FastMCP Python 3.10+ License: MIT

🚀 Overview

CodeSecure MCP is a unified Model Context Protocol server that exposes security scanning and compliance tools to any MCP-compatible client including VS Code, Cursor, Antigravity, CLI, and CI/CD pipelines.

It orchestrates multiple industry-standard security tools and enriches their findings using advanced AI models from Google Gemini, AWS Kiro, and Azure.

🏗️ Architecture

  • MCP Server: FastMCP-powered server orchestration.
  • Scanner Engine: Parallel execution of 9 security tools.
  • AI Manager: Multi-provider fallback and batch processing logic.
  • Security Layer: Secure-by-design subprocess execution and input sanitation.

🔧 Core Features

  • Multi-Scanner Engine: Bandit, Semgrep, Checkov, detect-secrets, pip-audit, etc.
  • AI Enrichment: Powered by Google Gemini, AWS Kiro, and Azure OpenAI.
  • False Positive Detection: >90% confidence filtering via AI.
  • Multi-Format Reports: Interactive HTML, JSON, SARIF 2.1.0, and Markdown.
  • Framework Mapping: OWASP Top 10, MITRE ATT&CK, NIST, and CWE.

📦 Installation

pip install codesecure-mcp
codesecure init

🚀 Usage

As CLI

# Run a comprehensive scan with Google AI enrichment
codesecure scan ./my-project --provider google

# List all available security tools
codesecure list-scanners

As MCP Server (IDE Integration)

Add to your IDE's MCP configuration:

{
  "mcpServers": {
    "codesecure": {
      "command": "codesecure",
      "args": ["mcp-server"]
    }
  }
}

🛡️ Standards & Security

  • SARIF 2.1.0: Standardized reporting format.
  • CWE/OWASP/MITRE: Comprehensive framework coverage.

📄 License

MIT © 2026 Noviq Technologies

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for codesecure from gravatar.com codesecure

Unverified details

These details have not been verified by PyPI
Meta
  • License: MIT License (MIT)
  • Requires: Python >=3.10
  • Provides-Extra: scanners , google , aws , all
Classifiers

Release history Release notifications | RSS feed

1.0.29

1.0.20

1.0.19

1.0.18

1.0.14

1.0.13

1.0.12

1.0.11

1.0.10

1.0.0b10 pre-release

This version

1.0.0b9 pre-release

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distributions

No source distribution files available for this release.See tutorial on generating distribution archives.

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

codesecure_mcp-1.0.0b9-py3-none-any.whl (119.5 kB view details)

Uploaded Python 3

File details

Details for the file codesecure_mcp-1.0.0b9-py3-none-any.whl.

File metadata

File hashes

Hashes for codesecure_mcp-1.0.0b9-py3-none-any.whl
Algorithm Hash digest
SHA256 d3e584c7a93d7651922f5d014a8156b8fa3dd125d5132600705b6f50463dd5d5
MD5 04f1053171977eda0cfced17da25ecc2
BLAKE2b-256 47efbacf26f6e9b6c4ceb56de7767ca865c48e549413896a6d877674ae700cb7

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page