Skip to main content
Glama
shyshlakov

pci-dss-mcp

by shyshlakov
OverviewSchemaRelated ServersScoreDiscussions
Go
Local

triage_findings

Run PCI DSS v4.0.1 scanners on a Go project and prioritize findings with AI assistance. Get a summary with severity counts, rule histogram, and top enriched finding per severity.

Instructions

Run all PCI DSS v4.0.1 scanners + AI-assisted prioritization + file:line enrichment on a Go project in a single call. Default: response_shape "summary" with by_severity counts, a capped by_rule histogram (top 10 + more_rules), and top 1 per severity enriched finding, plus pagination.next_cursor for drill-down. min_severity / rule_filter drop the response to shape "flat" but still carry summary.by_severity + summary.by_rule for full-scan context. Follow the cursor for the full paginated list.

Input Schema

TableJSON Schema
NameRequiredDescriptionDefault
pathYesPath to the Go project to triage. If empty, uses current directory (.)
dep_scan_modeNoDependency scanner mode: only 'auto' (default) is supported after v0.6.3. Empty value is treated as 'auto'.
include_testsNoInclude _test.go files in scan results. Default false
include_taintNoEnable flow-based severity adjustment via go/packages type analysis. When true, panscanner downgrades PAN-KEYWORD and suppresses PAN-TYPE findings for transit-only CHD fields. Adds 5-30 seconds to scan time. Default true (production-grade precision, matches generate_compliance_report). Set false for fast dev iteration. Requires 'go' binary on PATH; falls back to AST-only scanning on failure.
min_severityNoFilter findings by minimum severity. One of CRITICAL / HIGH / MEDIUM / LOW / INFO (case-insensitive). Default: no severity filter. Applied BEFORE enrichment to save context-collection cost.
rule_filterNoFilter findings by rule ID. Comma-separated list for exact match (e.g. PAN-KEYWORD,PAN-TYPE) OR a single regex in leading/trailing slashes (e.g. /PAN-.*/). Default: no rule filter.
limitNoMaximum number of findings to enrich per call. Default 0 (summary-first response with next_cursor). To fetch more findings than fit in one response, follow next_cursor; do NOT raise this value to fetch all at once (server caps at the per-tool page size and rejects with LIMIT_EXCEEDS_PAGE_SIZE).
cursorNoOpaque cursor token from a prior triage_findings response. When set, resumes pagination from the stored session cache (10-minute TTL). Leave empty for a fresh scan.

Output Schema

TableJSON Schema
NameRequiredDescriptionDefault

No arguments

Tool Definition Quality

A5/5.0
Behavior5/5

Does the description disclose side effects, auth requirements, rate limits, or destructive behavior?

With no annotations, the description fully discloses behavioral traits: response shapes, pagination with cursor, parameter effects (min_severity/rule_filter on shape), limit caps, include_taint's time cost and fallback, and TTL for cursor. This goes beyond what annotations typically provide.

Agents need to know what a tool does to the world before calling it. Descriptions should go beyond structured annotations to explain consequences.

Conciseness5/5

Is the description appropriately sized, front-loaded, and free of redundancy?

The description is dense but appropriately structured. It front-loads the main purpose, then explains default response shape and pagination, followed by parameter details. Every sentence contributes meaningful information without redundancy.

Shorter descriptions cost fewer tokens and are easier for agents to parse. Every sentence should earn its place.

Completeness5/5

Given the tool's complexity, does the description cover enough for an agent to succeed on first attempt?

Given the tool's complexity (8 parameters, no annotations, output schema present), the description covers all aspects: purpose, response shapes, pagination, parameter interactions, and caveats. It is complete and leaves no major gaps.

Complex tools with many parameters or behaviors need more documentation. Simple tools need less. This dimension scales expectations accordingly.

Parameters5/5

Does the description clarify parameter syntax, constraints, interactions, or defaults beyond what the schema provides?

Schema coverage is 100%, but the description adds substantial meaning beyond the schema: default behavior for path, dep_scan_mode version info, include_taint effects and fallback, min_severity timing, rule_filter regex syntax, limit cap warning, and cursor TTL. Each parameter explanation adds unique value.

Input schemas describe structure but not intent. Descriptions should explain non-obvious parameter relationships and valid value ranges.

Purpose5/5

Does the description clearly state what the tool does and how it differs from similar tools?

The description clearly states the tool's purpose: running all PCI DSS v4.0.1 scanners with AI prioritization and enrichment on a Go project. It specifies the verb 'run' and resource 'Go project,' and differentiates from sibling tools (which are individual checks) by offering a comprehensive single-call triage.

Agents choose between tools based on descriptions. A clear purpose with a specific verb and resource helps agents select the right tool.

Usage Guidelines5/5

Does the description explain when to use this tool, when not to, or what alternatives exist?

The description provides clear guidance on when to use this tool: for a full triage scan. It explains default behavior and pagination, and implicitly contrasts with sibling tools that focus on single checks. It also advises on parameter usage (e.g., limit, cursor) for fetching more findings.

Agents often have multiple tools that could apply. Explicit usage guidance like "use X instead of Y when Z" prevents misuse.

Install Server

Other Tools

Latest Blog Posts

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/shyshlakov/pci-dss-mcp'

If you have feedback or need assistance with the MCP directory API, please join our Discord server