vigile-mcp

Security scanner for MCP servers and agent skills — query trust scores, check for vulnerabilities, and search the Vigile trust registry

GitHub

vigile-mcp

MCP server for Vigile AI Security — query trust scores for MCP servers and agent skills directly from Claude Code, Cursor, and other AI agents.

Quick Start

npx vigile-mcp

Or install globally:

npm install -g vigile-mcp

Add to Claude Code

{
  "mcpServers": {
    "vigile": {
      "command": "npx",
      "args": ["-y", "vigile-mcp"]
    }
  }
}

Tools

Tool	Description
`vigile_check_server`	Look up trust score for an MCP server by name
`vigile_check_skill`	Look up trust score for an agent skill by name
`vigile_scan_content`	Scan raw tool/skill content for security issues
`vigile_search`	Search the Vigile trust registry by keyword

Authentication

By default, vigile-mcp uses the public Vigile registry (rate-limited). For higher limits, set your API key:

VIGILE_API_KEY=your_key npx vigile-mcp

Or configure it in your MCP client's environment:

{
  "mcpServers": {
    "vigile": {
      "command": "npx",
      "args": ["-y", "vigile-mcp"],
      "env": {
        "VIGILE_API_KEY": "your_key"
      }
    }
  }
}

Rate Limits

Tier	Scans/min	Monthly Quota
Free (no key)	10	50
Pro	60	1,000
Pro+	300	5,000

Registry lookups (vigile_check_server, vigile_check_skill, vigile_search) do not count against your scan quota.

Disclaimer

THIS SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED. Vigile AI Security provides security scanning and trust scoring as informational tools only. Trust scores, scan results, and security assessments are based on automated analysis and should not be considered definitive security guarantees.

Vigile does not guarantee the detection of all security threats, vulnerabilities, or malicious behavior. Users are solely responsible for their own security decisions and should use Vigile as one component of a comprehensive security strategy.

Features marked as "Beta" (including Sentinel runtime monitoring) are under active development and may produce false positives, false negatives, or unexpected results.

By using this software, you agree to the Vigile Terms of Service.

License

MIT — see LICENSE for details.

Related Servers

Scout Monitoring MCP

sponsor

Put performance and error data directly in the hands of your AI assistant.

Alpha Vantage MCP Server

sponsor

Access financial market data: realtime & historical stock, ETF, options, forex, crypto, commodities, fundamentals, technical indicators, & more

Generic API MCP Server

A generic server to interact with any REST API, allowing you to query data, create items, and call methods.

Debugg AI

Enable your code gen agents to create & run 0-config end-to-end tests against new code changes in remote browsers via the Debugg AI testing platform.

Yapi

An MCP server for the Yapi API management platform.

Claude Project Coordinator

Manage and coordinate multiple Xcode/Swift projects with features like project tracking, smart search, and analytics.

MCPJam Inspector

A developer tool for testing and debugging MCP servers, supporting STDIO, SSE, and Streamable HTTP protocols.

MCP Server on Cloudflare

A template for deploying a remote MCP server on Cloudflare Workers without authentication.

Pica MCP Server

An MCP server for Pica that enables seamless interaction with various third-party services through a standardized interface.

Unimus MCP Server

A read-only server for the Unimus network configuration management system.

Glider

Roslyn-powered C# code analysis server for LLMs. Supports stdio and HTTP transports.

Repo Map

An MCP server (and command-line tool) to provide a dynamic map of chat-related files from the repository with their function prototypes and related files in order of relevance. Based on the "Repo Map" functionality in Aider.chat