Allows deployment of the Solodit MCP server as a containerized application, enabling portable and consistent execution across different environments.
Provides access to Solodit vulnerability reports that are hosted or referenced in GitHub repositories, enabling search and retrieval of security findings.
Allows installation and execution of the Solodit MCP server using the npm package manager, providing an easy way to set up the server with a single command.
Supports installation of dependencies and building the project using the pnpm package manager, offering an alternative method for local setup.
Provides command-line interfaces for installing, building, and running the Solodit MCP server, enabling automation and integration with system scripts.
Solodit MCP Server
A Model Context Protocol (MCP) server for searching and retrieving Solodit vulnerability reports.
https://github.com/user-attachments/assets/057ca6a2-8ca2-400c-b92b-9ed585ae2e79
Features
Search vulnerability reports by keywords
Get full report content
Related MCP server: Semgrep MCP Server
Setup
Easiest way is to start the server with npx or with docker:
or with remote docker:
Local setup
Using Docker
Build the image:
Run the container:
Local build
Install dependencies:
Build and run:
IDE Integration
Add this to your mcp.json configuration file:
API Usage
The server exposes an MCP endpoint at POST /mcp with these tools:
Search Tool (
search):
Input:
{ "keywords": "your search terms" }Returns: JSON array of matching report titles
Get by Title (
get-by-title):
Input:
{ "title": "exact report title" }Returns: Full content of the matching report
