Bug Bounty MCP Server

Instructions

Implementation Reference

• src/mcp_server/app.py:1448-1484 (handler)

  MCP tool handler for 'bugbounty_comprehensive_assessment'. This function defines the tool logic, validates inputs via type hints, constructs a data payload, and forwards the request to the backend REST API endpoint '/api/bugbounty/comprehensive-assessment' for execution of the comprehensive assessment workflow.
  @mcp.tool() def bugbounty_comprehensive_assessment( domain: str, scope: str = "", priority_vulns: str = "rce,sqli,xss,idor,ssrf", include_osint: bool = True, include_business_logic: bool = True, ) -> dict[str, Any]: """Create comprehensive bug bounty assessment combining all workflows. Args: domain: Target domain scope: Comma-separated list of in-scope domains/IPs priority_vulns: Comma-separated list of priority vulnerability types include_osint: Include OSINT gathering include_business_logic: Include business logic testing Returns: Comprehensive bug bounty assessment workflow """ data = { "domain": domain, "scope": scope.split(",") if scope else [], "priority_vulns": priority_vulns.split(",") if priority_vulns else [], "include_osint": include_osint, "include_business_logic": include_business_logic, } logger.info(f"🎯 Creating comprehensive bug bounty assessment for {domain}") result = api_client.safe_post("api/bugbounty/comprehensive-assessment", data) if result.get("success"): logger.info(f"✅ Comprehensive assessment created for {domain}") else: logger.error(f"❌ Failed to create comprehensive assessment for {domain}") return result