mcpindex.ai
← Index

SAST MCP Server

io.github.Skyrxin/sast-mcp-server·v0.8.1·Other

11-scanner SAST/DAST MCP server with closed-loop remediation, SBOM/SARIF, and CI integrations

Trust verdict · v1 advisory · method
NOT YET SCREENEDno verdict on file

Verdict not yet evaluated for this tool. The semantic screen takes adversarial cases first; coverage rolls out as the corpus expands (15/150 labels to graduation). The deterministic conformance probe is built but has not yet run on the public corpus, so a recorded verdict here is REVIEW or UNVERIFIED, never a clearing ALLOW. Until a verdict is recorded, an agent should treat this tool as not-yet-cleared and fall back to its own checks. Method: the eval, four-state verdict, honest limits.

Own this server? Screen its description →

Environment variables
SAST_MCP_TIMEOUT

Per-scan timeout in seconds (default: 300).

SAST_MCP_LOG_LEVEL

Logging level: DEBUG, INFO, WARNING, ERROR (default: INFO).

SAST_MCP_API_KEY
secret

Optional static API key to require auth (legacy mode; HTTP transports).

SAST_MCP_JWT_SECRET
secret

Optional HMAC secret to require JWT auth with scopes (HTTP transports).

MCP quality score · maturity, not trust · methodology
freshness
25
completeness
20
installability
25
documentation
15
stability
5
Alternatives in Other
agency.lona/trading
agency.lona/trading

AI-powered trading strategy development: backtesting, market data, and portfolio analysis

ABMeter
ai.abmeter/abmeter

Feature flagging and A/B testing platform with AI-first experimentation workflows.

AdAdvisor MCP Server
ai.adadvisor/mcp-server

Query Meta Ads performance data — accounts, campaigns, ad sets, ads, metrics & settings.