How do I use osidb-mcp?

1. Click on "Install Server". 2. Wait a few minutes for the server to deploy. Once ready, it will show a "Started" state. 3. In the chat, type @ followed by the MCP server name and your instructions, e.g., "@osidb-mcp show me details for CVE-2023-1234" That's it! The server will respond to your query, and you can continue using it as needed. Here is a step-by-step guide with screenshots.

osidb-mcp

by vdanen

Overview Schema Related Servers Score Discussions

Python

Remote

osidb-mcp

Python Model Context Protocol (MCP) server for OSIDB, built on osidb-bindings from PyPI. Use it from Cursor, Claude Desktop, or any MCP client over stdio. PyPI: pypi.org/project/osidb-mcp · Homebrew: vdanen/osidb-mcp · Source: github.com/vdanen/osidb-mcp.

Install

Homebrew

brew tap vdanen/osidb-mcp
brew install osidb-mcp

After the tap is installed, upgrades use brew upgrade osidb-mcp.

PyPI

Published on PyPI as osidb-mcp:

pipx install osidb-mcp
# or
pip install osidb-mcp

Print the installed package version (no OSIDB env or credentials required):

osidb-mcp --version
# or: osidb-mcp -V

Configuration (environment)

Variable	Required	Description
`OSIDB_BASE_URL`	yes	OSIDB root URL, e.g. `https://osidb.example.com`
`OSIDB_AUTH`	no	`kerberos` (default) or `basic`
`OSIDB_USERNAME` / `OSIDB_PASSWORD`	for `basic`	Basic auth for token obtain
`OSIDB_VERIFY_SSL`	no	`true` (default) or `false` (prefer `REQUESTS_CA_BUNDLE` for custom CAs)
`OSIDB_USER_AGENT`	no	Optional extra User-Agent suffix
`OSIDB_MCP_ACCESS_MODE`	no	(default). until mutation tools exist.

Kerberos: the process must have a valid ticket (kinit) for the OSIDB HTTP service.

Optional keys forwarded by bindings: BUGZILLA_API_KEY, JIRA_ACCESS_TOKEN, JIRA_API_EMAIL.

Cursor / Claude MCP snippet

{
  "mcpServers": {
    "osidb": {
      "command": "osidb-mcp",
      "env": {
        "OSIDB_BASE_URL": "https://your-internal-osidb",
        "OSIDB_AUTH": "kerberos",
        "OSIDB_VERIFY_SSL": "true",
        "OSIDB_MCP_ACCESS_MODE": "readonly"
      }
    }
  }
}

Tools (read-only)

All MCP tools require a working OSIDB session (env + Kerberos or basic auth). The CLI osidb-mcp --version / -V does not contact OSIDB (see Install). The table lists every registered tool, in the same order as server.py. For longer explanations, example prompts, and limitations, see TOOLS.md. If an LLM agent is calling these tools, read Using with AI agents first.

Tool	Purpose
`osidb_status`	OSIDB API health / status payload (good connectivity check).
`osidb_whoami`	Current authenticated user / profile from `GET /osidb/whoami`.
`flaw_get`	One flaw by CVE id or internal `uuid`; optional `include_fields` / `exclude_fields`. Adds `osidb_flaw_uuid` at top level when there is no CVE yet.
`search_flaws`	High-level search: keyword and/or CVE ids, severity (`severity` / `severities`), changed-date range (`date_from` / `date_to`), PS `product_modules` / `product_components`, workflow, embargo, owner; keyword-only uses OSIDB full-text search.
`get_flaw_details`	Full flaw plus affects and trackers; `flaw_id` is CVE or `uuid`. If no CVE, nested lists use `flaw__uuid` / `affects__flaw__uuid`.
`get_cve_summary`	Executive rollups: counts by severity and by workflow plus total under shared filters (`group_by`: `severity` \| `workflow` \| `both`); multiple `flaws_count` calls; see `partial_errors` if a bucket fails.
`flaws_list`	Raw list API: components, nested affects filters (`affects_ps_*`), workflow, impact, owner, embargo, dates, `search`, allowlisted `extra_query` (OSIDB v2 query keys); `limit` ≤ 100. Success responses include `identifier_hint` (CVE vs `uuid`).
`flaws_count`	Same filter surface as `flaws_list` but returns count only (no flaw bodies).
`flaws_search`	Full-text search over flaws (`search` parameter); paginated like list APIs. Success responses include `identifier_hint`.
`affects_list`	Rows keyed by affect with `flaw__*` filters; scope flaw by `flaw_cve_id` / `flaw_cve_id_in` or `flaw_uuid` / `flaw_uuid_in` when there is no CVE.
`trackers_list`	Tracker filings; scope by `affects_flaw_cve_id` (or `_in`) or `affects_flaw_uuid` (or `_in`) when there is no CVE; optional PS filters and `tracker_type`.
`flaw_comments_list`	Paginated discussion comments for a flaw id.
`flaw_references_list`	Paginated external references (URLs, advisory refs, etc.) for a flaw id.
`flaw_cvss_scores_list`	Paginated CVSS score rows (issuer/version/vector) for a flaw id.
`flaw_acknowledgments_list`	Paginated acknowledgments for a flaw id (CVE or `uuid`).
`flaw_labels_list`	Paginated flaw collaborator labels for a flaw id.
`flaw_package_versions_list`	Paginated package version rows for a flaw id.
`affect_get`	Single affect by OSIDB uuid; optional field projection and `include_history`.
`tracker_get`	Single tracker filing by uuid; optional field projection / `include_meta_attr`.
`labels_list`	Paginated global OSIDB labels (`GET /labels`); optional allowlisted `extra_query`.
`affect_cvss_scores_list`	Paginated CVSS rows for one affect (by affect uuid); optional allowlisted `extra_query`.
`search_component`	Flaws whose flaw-level components intersect `components_in` (v2 flaws list); optional impact/workflow/date filters.
`query_affects`	Affect rows by CVE (`flaw_cve_id` / `flaw_cve_id_in`) and/or flaw UUID (`flaw_uuid` / `flaw_uuid_in`); wrapper over `affects_list`.
`get_pending_exploit_actions`	[EXPERIMENTAL] `GET /exploits/api/v1	v2/report/pending` — pending exploit / IR actions; may 404 if exploits app is off.

limit (and analogous list limits) are capped at 100 per request unless noted otherwise on a tool.

When to use which

Triage / natural language style: search_flaws, get_flaw_details, get_cve_summary.
Exact OpenAPI filters or rare query keys: flaws_list / flaws_count with extra_query (allowlisted keys only).
Affect- or tracker-centric views: affects_list, trackers_list, or the subresource tools under a known flaw id.

Flaw identifiers (CVE vs internal `uuid`)

OSIDB flaws always have an internal uuid. A cve_id may be missing until one is assigned — that is normal, not “no identifier.”

List/search responses include each flaw’s uuid in JSON. flaws_list, flaws_search, and search_flaws (structured path) also return an identifier_hint string for agents.
flaw_get / get_flaw_details: when there is no usable CVE string, the tool adds top-level osidb_flaw_uuid (same value as flaw.uuid) so follow-up calls are obvious.
get_flaw_details: if cve_id is empty, affects and trackers are loaded using flaw__uuid / affects__flaw__uuid automatically.
affects_list / query_affects: use flaw_uuid / flaw_uuid_in to scope rows when there is no CVE. trackers_list: use affects_flaw_uuid / affects_flaw_uuid_in.
flaw_comments_list, flaw_references_list, flaw_cvss_scores_list, flaw_acknowledgments_list, flaw_labels_list, flaw_package_versions_list: the flaw_id argument is the same as for flaw_get — CVE string or internal uuid. If you use include_fields on flaw_get, include uuid when you still need it downstream.

Analyst examples

Same idea as “search CVEs”: use search_flaws with keyword, or combine cve_ids, severity / severities, date_from / date_to, and product_modules / product_components.
Critical open flaws touching httpd: search_flaws or flaws_list with impact="CRITICAL", workflow_state_in for non-terminal states, and product_components=["httpd"] or components_in / affects_ps_component as your data model requires.
Unowned important CVEs for a RHEL major: search_flaws with owner_isempty=true, severities=["IMPORTANT"], and product_modules / product_components set to the exact PS strings your OSIDB uses for that major (confirm in your internal docs).
Executive rollup: get_cve_summary with optional date range and product filters; tune group_by if you only need severity or only workflow buckets.

Using with AI agents

These tools return structured JSON (sometimes large). The MCP host (Cursor, Claude Desktop, API client) chooses the LLM — this server cannot select or downgrade a model for you.

Good default: A mid-tier model (e.g. Sonnet-class) is usually enough for reliable tool names, filters, and reading nested flaw / affect / tracker data.
Smaller / cheaper models: Reasonable for narrow tasks (one CVE, a known tool, counts only). Tight prompts help; ambiguous multi-step triage may need more retries or a larger model.
Largest models: Optional when the task is underspecified or you need unusually careful synthesis; for routine read-only chains they are often more than needed.
Saving tokens: Use include_fields / exclude_fields where supported; prefer flaws_count or get_cve_summary over pulling many full list pages; keep limit modest; ask the agent to summarize instead of echoing entire tool payloads unless you are debugging.

Security

See SECURITY.md for the threat model, OWASP-oriented checklist, and access-mode behavior.

Outputs may include embargoed content; treat transcripts and logs according to your data classification policy (especially when using hosted LLMs).
OSIDB_MCP_ACCESS_MODE=readonly is the only supported value today — readwrite exits at startup. When mutation tools exist later, use two MCP entries (readonly vs write-capable) so writes happen only when you intend them.
Never commit OSIDB_PASSWORD; use IDE env or secret stores.

Development

uv venv .venv && source .venv/bin/activate
uv pip install -e ".[dev]"
python -m osidb_mcp
pytest tests
pip-audit

With Makefile: make install, make test, make audit, or make check (CI-equivalent). make build / make upload for releases (upload requires twine credentials).

Live integration tests: make livetest runs live_tests/ with pytest -vv -s (verbose + uncaptured stderr) when OSIDB_LIVE_TEST=1 and normal OSIDB_* credentials are set. Default assertions use CVE-2014-0160; optional OSIDB_LIVE_MIN_* env vars enforce minimum totals for your instance. Setup, count output, and .gitignore patterns for secrets are documented in live_tests/README.md. Default make test / pytest only run tests/ (offline).

On Debian/Ubuntu (including local containers), install libkrb5-dev before pip install so the gssapi dependency can find krb5-config (Kerberos stack used with osidb-bindings).

License

MIT — see LICENSE.

This server cannot be installed

license - permissive license

quality - not tested

maintenance

How are these scores calculated?

Maintenance

–Maintainers

–Response time

–Release cycle

3Releases (12mo)

Resources

GitHub Repository

Need Help?

Related Servers

Unclaimed servers have limited discoverability.

Looking for Admin?

If you are the server author, to access and configure the admin panel.

Latest Blog Posts

Lightport: Open-Sourcing Glama's AI Gateway
By punkpeye on April 27, 2026.
open source
OpenAI
Tool Definition Quality Score (TDQS)
By punkpeye on April 3, 2026.
mcp
The Hackers Who Tracked My Sleep Cycle
By punkpeye on March 26, 2026.
security

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/vdanen/osidb-mcp'

If you have feedback or need assistance with the MCP directory API, please join our Discord server

osidb-mcp

Install

Homebrew

PyPI

Configuration (environment)

Cursor / Claude MCP snippet

Tools (read-only)

When to use which

Flaw identifiers (CVE vs internal uuid)

Analyst examples

Using with AI agents

Security

Development

License

Maintenance

Resources

Looking for Admin?

Latest Blog Posts

MCP directory API

Flaw identifiers (CVE vs internal `uuid`)