Hooks up VibeScan's local security scanner so Claude can hunt for leaked secrets and code vulnerabilities in your projects without sending anything off your machine. You get two tools: vibescan_scan runs the full check across 14 secret categories (hardcoded credentials, cloud keys, SSH keys, .env files), flags dangerous patterns like eval() and SQL injection risks, and verifies git hygiene. vibescan_rules lists all 17 detection rules if you want to see what it's looking for. Useful when onboarding a new codebase, before commits, or when you want Claude to audit security posture during a conversation about your code.
claude mcp add --transport stdio aguantar-vibescan-mcp-server uvx vibescan-mcp-server