This is an OWASP-based vulnerability scanner that analyzes your codebase for security issues. You'd reach for it when you need to audit code for common threats like injection flaws, broken authentication, or insecure configurations before pushing to production. The source details are minimal, so expect basic scanning operations rather than deep integration with specific frameworks or CI/CD pipelines. It runs as a remote service over SSE, meaning you're sending code snippets or repository references to an external endpoint for analysis. Good for quick security checks during development, though you'll want to verify what specific OWASP categories it covers and whether it supports your language stack.
claude mcp add --transport sse io.github.evozim-codevulnerability https://codevulnerability-mcp.vercel.app/api/mcp