Skip to main content

Plexicus ASPM MCP server — security findings, scans and AI remediations in your IDE

Project description

plexicus-mcp

MCP (Model Context Protocol) server for Plexicus, the AI-powered Application Security Posture Management (ASPM) platform. It brings your security findings, scans and AI-generated remediations directly into Claude Code, Cursor, VS Code, Windsurf or any MCP-compatible client — so your coding agent can find, understand and fix vulnerabilities without leaving the IDE.

Unlike the rest of this monorepo, this directory is not a Docker service: it is a standalone Python package published to PyPI that runs on the developer's machine and talks to the Plexicus REST API.

Quick start

  1. Generate an API token in the Plexicus console: Settings → API Tokens.
  2. Add the server to your client:

Claude Code

claude mcp add plexicus \
  -e PLEXICUS_API_TOKEN=<your-token> \
  -e PLEXICUS_API_URL=https://api.app.plexicus.ai \
  -- uvx plexicus-mcp

Cursor / VS Code / Windsurf (JSON config)

{
  "mcpServers": {
    "plexicus": {
      "command": "uvx",
      "args": ["plexicus-mcp"],
      "env": {
        "PLEXICUS_API_TOKEN": "<your-token>",
        "PLEXICUS_API_URL": "https://api.app.plexicus.ai"
      }
    }
  }
}

No uv? Use pipx run plexicus-mcp or pip install plexicus-mcp + command plexicus-mcp.

Configuration

Variable Required Default Description
PLEXICUS_API_TOKEN yes API token from Settings → API Tokens
PLEXICUS_API_URL no https://api.app.plexicus.ai Base URL of your Plexicus API (self-hosted deployments)

What it exposes

Tools

Tool Description
get_current_repository Map the workspace git remote to its Plexicus repository
list_repositories / get_repository Browse registered repositories with severity counts
list_findings / get_finding Query findings (severity, status, CWE, text search, pagination)
request_scan / get_scan_status Launch a scan and follow its progress
generate_remediation / get_remediation Ask the AI remediation engine for a fix and fetch it
get_security_posture Account-wide severity totals and worst repositories

Promptsfix_finding, triage_findings, security_review: guided workflows the agent can follow end-to-end (read finding → generate remediation → apply diff → verify).

Resourcesplexicus://repositories and plexicus://repositories/{id}/findings as JSON.

Every tool returns {"markdown": ..., "data": ...}: a human-readable digest plus the raw API payload for follow-up automation.

Example session

"What critical security issues does this repo have?" — the agent calls get_current_repository, then list_findings(severity="critical").

"Fix the SQL injection one" — the agent uses the fix_finding prompt: reads the finding, requests an AI remediation, applies the diff to your workspace and runs the tests.

Development

cd mcp
pip install -e ".[dev]"
pytest
ruff check .

Releasing

Releases are published to PyPI by the Forgejo workflow .forgejo/workflows/publish-mcp.yml when a mcp-v* tag is pushed (e.g. mcp-v0.1.0). Bump version in pyproject.toml and __version__ in src/plexicus_mcp/__init__.py first.

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

plexicus_mcp-0.1.0.tar.gz (12.2 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

plexicus_mcp-0.1.0-py3-none-any.whl (12.9 kB view details)

Uploaded Python 3

File details

Details for the file plexicus_mcp-0.1.0.tar.gz.

File metadata

  • Download URL: plexicus_mcp-0.1.0.tar.gz
  • Upload date:
  • Size: 12.2 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/6.2.0 CPython/3.11.15

File hashes

Hashes for plexicus_mcp-0.1.0.tar.gz
Algorithm Hash digest
SHA256 3d350dcdb6aaa7a6a55a7fd224ebcf74d9abb5bb55ddb9859701d242688539cf
MD5 b0947cbddda53c4c5a2730a912e1bd0c
BLAKE2b-256 ebd947bca339aa792a2ee7310d628532ea6e122dd688e0fe9fa54b3893d0e9e2

See more details on using hashes here.

File details

Details for the file plexicus_mcp-0.1.0-py3-none-any.whl.

File metadata

  • Download URL: plexicus_mcp-0.1.0-py3-none-any.whl
  • Upload date:
  • Size: 12.9 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/6.2.0 CPython/3.11.15

File hashes

Hashes for plexicus_mcp-0.1.0-py3-none-any.whl
Algorithm Hash digest
SHA256 16ecd48f77a7d8ec22d55f0711f85f3bb0a0cedd11784b0fff2cea4cd76c7cf1
MD5 f44927b7aaa1a4c2933b4ddd8e65e12f
BLAKE2b-256 e34f66409d381fa22d30fe5ab808cad5858ffd5a73d90f71300205649efff5b1

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page