Plexicus ASPM MCP server — security findings, scans and AI remediations in your IDE
Project description
plexicus-mcp
MCP (Model Context Protocol) server for Plexicus, the AI-powered Application Security Posture Management (ASPM) platform. It brings your security findings, scans and AI-generated remediations directly into Claude Code, Cursor, VS Code, Windsurf or any MCP-compatible client — so your coding agent can find, understand and fix vulnerabilities without leaving the IDE.
Unlike the rest of this monorepo, this directory is not a Docker service: it is a standalone Python package published to PyPI that runs on the developer's machine and talks to the Plexicus REST API.
Quick start
- Generate an API token in the Plexicus console: Settings → API Tokens.
- Add the server to your client:
Claude Code
claude mcp add plexicus \
-e PLEXICUS_API_TOKEN=<your-token> \
-e PLEXICUS_API_URL=https://api.app.plexicus.ai \
-- uvx plexicus-mcp
Cursor / VS Code / Windsurf (JSON config)
{
"mcpServers": {
"plexicus": {
"command": "uvx",
"args": ["plexicus-mcp"],
"env": {
"PLEXICUS_API_TOKEN": "<your-token>",
"PLEXICUS_API_URL": "https://api.app.plexicus.ai"
}
}
}
}
No uv? Use pipx run plexicus-mcp or pip install plexicus-mcp + command plexicus-mcp.
Configuration
| Variable | Required | Default | Description |
|---|---|---|---|
PLEXICUS_API_TOKEN |
yes | — | API token from Settings → API Tokens |
PLEXICUS_API_URL |
no | https://api.app.plexicus.ai |
Base URL of your Plexicus API (self-hosted deployments) |
What it exposes
Tools
| Tool | Description |
|---|---|
get_current_repository |
Map the workspace git remote to its Plexicus repository |
list_repositories / get_repository |
Browse registered repositories with severity counts |
list_findings / get_finding |
Query findings (severity, status, CWE, text search, pagination) |
request_scan / get_scan_status |
Launch a scan and follow its progress |
generate_remediation / get_remediation |
Ask the AI remediation engine for a fix and fetch it |
get_security_posture |
Account-wide severity totals and worst repositories |
Prompts — fix_finding, triage_findings, security_review: guided workflows the agent
can follow end-to-end (read finding → generate remediation → apply diff → verify).
Resources — plexicus://repositories and plexicus://repositories/{id}/findings as JSON.
Every tool returns {"markdown": ..., "data": ...}: a human-readable digest plus the raw API
payload for follow-up automation.
Example session
"What critical security issues does this repo have?" — the agent calls
get_current_repository, thenlist_findings(severity="critical")."Fix the SQL injection one" — the agent uses the
fix_findingprompt: reads the finding, requests an AI remediation, applies the diff to your workspace and runs the tests.
Development
cd mcp
pip install -e ".[dev]"
pytest
ruff check .
Releasing
Releases are published to PyPI by the Forgejo workflow .forgejo/workflows/publish-mcp.yml
when a mcp-v* tag is pushed (e.g. mcp-v0.1.0). Bump version in pyproject.toml and
__version__ in src/plexicus_mcp/__init__.py first.
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file plexicus_mcp-0.1.0.tar.gz.
File metadata
- Download URL: plexicus_mcp-0.1.0.tar.gz
- Upload date:
- Size: 12.2 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.11.15
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
3d350dcdb6aaa7a6a55a7fd224ebcf74d9abb5bb55ddb9859701d242688539cf
|
|
| MD5 |
b0947cbddda53c4c5a2730a912e1bd0c
|
|
| BLAKE2b-256 |
ebd947bca339aa792a2ee7310d628532ea6e122dd688e0fe9fa54b3893d0e9e2
|
File details
Details for the file plexicus_mcp-0.1.0-py3-none-any.whl.
File metadata
- Download URL: plexicus_mcp-0.1.0-py3-none-any.whl
- Upload date:
- Size: 12.9 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.11.15
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
16ecd48f77a7d8ec22d55f0711f85f3bb0a0cedd11784b0fff2cea4cd76c7cf1
|
|
| MD5 |
f44927b7aaa1a4c2933b4ddd8e65e12f
|
|
| BLAKE2b-256 |
e34f66409d381fa22d30fe5ab808cad5858ffd5a73d90f71300205649efff5b1
|