Security MCP Server

Overview Schema Related Servers Score Discussions

MIT License

sarif.tpl•3.58 kB

{ "$schema": "https://raw.githubusercontent.com/oasis-tcs/sarif-spec/master/Schemata/sarif-schema-2.1.0.json", "version": "2.1.0", "runs": [ { "tool": { "driver": { "name": "Trivy", "informationUri": "https://github.com/aquasecurity/trivy", "fullName": "Trivy Vulnerability Scanner", "version": "0.15.0", "rules": [ {{- $t_first := true }} {{- range $result := . }} {{- $vulnerabilityType := .Type }} {{- range .Vulnerabilities -}} {{- if $t_first -}} {{- $t_first = false -}} {{ else -}} , {{- end }} { "id": {{ printf "%s: %s-%s %s" $result.Target .PkgName .InstalledVersion .VulnerabilityID | toJson }}, "name": "{{ toSarifRuleName $vulnerabilityType }}", "shortDescription": { "text": {{ printf "%v Package: %v" .VulnerabilityID .PkgName | printf "%q" }} }, "fullDescription": { "text": {{ endWithPeriod (escapeString .Title) | printf "%q" }} }, "defaultConfiguration": { "level": "{{ toSarifErrorLevel .Vulnerability.Severity }}" } {{- with $help_uri := .PrimaryURL -}} , {{ $help_uri | printf "\"helpUri\": %q," -}} {{- else -}} , {{- end }} "help": { "text": {{ printf "Vulnerability %v\nSeverity: %v\nPackage: %v\nInstalled Version: %v\nFixed Version: %v\nLink: [%v](%v)" .VulnerabilityID .Vulnerability.Severity .PkgName .InstalledVersion .FixedVersion .VulnerabilityID .PrimaryURL | printf "%q"}}, "markdown": {{ printf "**Vulnerability %v**\n| Severity | Package | Installed Version | Fixed Version | Link |\n| --- | --- | --- | --- | --- |\n|%v|%v|%v|%v|[%v](%v)|\n" .VulnerabilityID .Vulnerability.Severity .PkgName .InstalledVersion .FixedVersion .VulnerabilityID .PrimaryURL | printf "%q"}} }, "properties": { "tags": [ "vulnerability", "{{ .Vulnerability.Severity }}", {{ .PkgName | printf "%q" }} ], "precision": "very-high" } } {{- end -}} {{- end -}} ] } }, "results": [ {{- $t_first := true }} {{- range $result := . }} {{- $filePath := .Target }} {{- range $index, $vulnerability := .Vulnerabilities -}} {{- if $t_first -}} {{- $t_first = false -}} {{ else -}} , {{- end }} { "ruleId": {{ printf "%s: %s-%s %s" $result.Target .PkgName .InstalledVersion .VulnerabilityID | toJson }}, "ruleIndex": {{ $index }}, "level": "{{ toSarifErrorLevel $vulnerability.Vulnerability.Severity }}", "message": { "text": {{ endWithPeriod (escapeString $vulnerability.Description) | printf "%q" }} }, "locations": [{ "physicalLocation": { "artifactLocation": { "uri": "{{ toPathUri $filePath }}", "uriBaseId": "ROOTPATH" } } }] } {{- end -}} {{- end -}} ], "columnKind": "utf16CodeUnits", "originalUriBaseIds": { "ROOTPATH": { "uri": "/" } } } ] }

Latest Blog Posts

OpenTelemetry for Model Context Protocol (MCP) Analytics and Agent Observability
By Om-Shree-0709 on .
observability
mcp
opentelemetry
Securing Enterprise AI Agents with Unique Identities in the Model Context Protocol (MCP)
By Om-Shree-0709 on .
When Your Year of Work Gets Copied Overnight: What Actually Matters?
By punkpeye on .
startups

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/michoo/security_mcp'

If you have feedback or need assistance with the MCP directory API, please join our Discord server