VibeGuard MCP Server
Detects hardcoded Algolia API keys and misconfigurations.
Detects hardcoded Bitbucket credentials and secrets.
Detects hardcoded Braintree API keys.
Detects hardcoded Cloudflare API keys and misconfigurations.
Detects hardcoded Contentful API keys.
Detects hardcoded Datadog API keys.
Detects hardcoded DigitalOcean API keys.
Detects hardcoded Discord bot tokens and webhooks.
Detects misconfigured Firebase databases, such as open read/write rules or missing authentication.
Detects hardcoded GitHub tokens and secrets.
Detects hardcoded GitLab tokens and secrets.
Detects hardcoded Grafana API keys.
Detects hardcoded Heroku API keys.
Detects hardcoded JFrog credentials.
Detects hardcoded Jira API tokens.
Detects hardcoded Linear API keys.
Detects hardcoded Mailchimp API keys.
Detects hardcoded Mailgun API keys.
Detects hardcoded Mapbox access tokens.
Detects hardcoded Netlify personal access tokens.
Detects hardcoded New Relic license keys.
Detects hardcoded Notion integration tokens.
Detects hardcoded npm tokens.
Detects hardcoded OpenAI API keys.
Detects hardcoded Paddle API keys.
Detects hardcoded PagerDuty API keys.
Detects hardcoded Patreon access tokens.
Detects hardcoded PlanetScale database credentials.
Detects hardcoded Resend API keys.
Detects hardcoded SendGrid API keys.
Detects hardcoded Sentry DSNs and tokens.
Detects hardcoded Slack tokens and webhooks.
Detects hardcoded Splunk tokens.
Detects hardcoded Square access tokens.
Detects hardcoded Stripe API keys (live and restricted).
Detects misconfigured Supabase databases, such as missing Row-Level Security or exposed service role keys.
Detects hardcoded Telegram bot tokens.
Detects SQL injection vulnerabilities in Turso database queries.
Detects hardcoded Twilio account SID and auth tokens.
Detects hardcoded Twitch client secrets.
Detects hardcoded HashiCorp Vault tokens.
Detects hardcoded Vercel deployment tokens.
Click on "Install Server".
Wait a few minutes for the server to deploy. Once ready, it will show a "Started" state.
In the chat, type
@followed by the MCP server name and your instructions, e.g., "@VibeGuard MCP Serverscan my project for security issues"
That's it! The server will respond to your query, and you can continue using it as needed.
Here is a step-by-step guide with screenshots.
📦 Install
Option 1: From npm (when published)
npx vibeguard installOption 2: From GitHub (works now!)
git clone https://github.com/yagyeshVyas/VibeGuard.git
cd VibeGuard
npm install
npm link # makes 'vibeguard' available globallyThen use it:
vibeguard scan # scan your project
vibeguard dashboard # beautiful terminal dashboard
vibeguard fix # auto-fix 43 rule types
vibeguard pre-deploy # 13-gate deployment check
vibeguard firewall "your prompt here" # AI firewallWire into Claude Code (from GitHub clone)
# In your project directory:
echo '{ "mcpServers": { "vibeguard": { "command": "node", "args": ["/path/to/VibeGuard/bin/cli.js", "mcp"] } } }' > .mcp.jsonOr use the global Claude Code command:
claude mcp add vibeguard -- node /path/to/VibeGuard/bin/cli.js mcpWire into Cursor / Windsurf / other MCP clients
Add to your MCP config file:
{
"mcpServers": {
"vibeguard": {
"command": "node",
"args": ["/path/to/VibeGuard/bin/cli.js", "mcp"]
}
}
}Wire into Codex CLI
# Add to ~/.codex/config.toml:
[mcp_servers.vibeguard]
command = "node"
args = ["/path/to/VibeGuard/bin/cli.js", "mcp"]vibeguard scan # scan your project
vibeguard dashboard # beautiful terminal dashboard
vibeguard fix # auto-fix 43 rule types
vibeguard pre-deploy # 13-gate deployment checkVibeGuard is a free, zero-dependency security and privacy scanner that runs entirely on your machine. It reads your code files locally, checks them against 699 security rules, and tells you exactly what's wrong and how to fix it — all without sending a single byte to any server.
It's built specifically for the problems AI coding tools create:
Hardcoded API keys visible in browser dev tools
Supabase/Firebase databases open to the world (no RLS)
Admin endpoints with no authentication
SQL injection, command injection, XSS
Secrets committed to git history
Hallucinated npm packages that don't exist
User data sent to AI APIs without redaction
Analytics tracking without consent (GDPR violation)
WebRTC IP leaks, clipboard theft, geolocation without consent
Even if an AI is fully jailbroken, it cannot leak data. Each layer runs automatically when the MCP server starts.
If you use Supabase, Firebase, or Convex, VibeGuard checks:
RLS missing — table created but row-level security never enabled
RLS fake policy —
USING (true)— looks enabled in dashboard, protects nothingPERMISSIVE policy — allows access unless another policy blocks it
Service role key in client — bypasses RLS entirely
Firebase rules open —
.read: trueor.write: trueFirebase rules any-auth —
auth != nullmeans ANY logged-in user sees ALL dataConvex public query — exported query with no auth check
OpenAI, Anthropic, Stripe (live + restricted), AWS, GitHub, Slack, GitLab, Twilio, SendGrid, Mailgun, Telegram, npm, Resend, GCP, Azure, Cloudflare, Datadog, Sentry, Algolia, Vercel, Netlify, Heroku, DigitalOcean, Notion, Linear, Contentful, PlanetScale, Vault, Doppler, Grafana, Jira, PagerDuty, New Relic, Splunk, Braintree, Square, Paddle, MUX, Mailchimp, Postmark, Sendinblue, Twitch, Patreon, Discord, Bitbucket, JFrog, LaunchDarkly, Rollbar, Mapbox, Twilio SID, and more.
Plus: connection strings with passwords, .env not in .gitignore, secrets in localStorage/sessionStorage, secrets in URL params, secrets in client-side config files.
SQL injection — string concat, template literals, f-strings, format(), % formatting, raw queries across Prisma, Drizzle, Sequelize, TypeORM, Kysely, MikroORM, Turso, Hono, Go, Python, PHP, C#, Kotlin, Rust
Command injection — exec/spawn with user input, template literals, backtick interpolation
Code injection — eval, new Function, setTimeout/setInterval with strings, vm.runInContext
XSS — dangerouslySetInnerHTML, v-html, innerHTML, outerHTML, document.write, insertAdjacentHTML, Angular DomSanitizer bypass, Rails html_safe, Laravel
{!! !!}SSTI — template render with user input (EJS, Pug, Handlebars, Mustache)
LDAP, XPath, NoSQL $where, header injection, log injection, CSV formula injection, PDF injection
SSRF — fetch to internal IPs, cloud metadata service (169.254.169.254), DNS rebinding
JWT alg:none, weak JWT secret, JWT decoded without verify
Hardcoded admin credentials
Password compared with
==(plaintext)Session fixation (no regenerate after login)
No rate limiting on login/register
Password in query string
Missing MFA enforcement
OAuth state parameter empty/static
Token in URL
No logout endpoint
Prompt injection in tool descriptions
AI agent can execute code, deploy, install packages, access secrets, modify auth
LLM output used as SQL, shell, DOM, file path
Data exfiltration via agent
Memory poisoning
Training data leakage
Agent loop without iteration cap
Tool result injection
Missing max_tokens, temperature too high
Browser API key exposure
Secure prompt analysis — analyzes your prompt BEFORE code generation
Slopsquat detection — hallucinated npm packages that don't exist
Typosquat detection
Postinstall scripts with curl/wget/eval
Unpinned Docker images (:latest)
GPL/AGPL license risk
Missing integrity hashes
git+http dependencies
Crypto miners in dependencies
Missing .npmrc
Terraform: S3 public, IAM wildcard, SG 0.0.0.0/0, RDS public, no encryption, no KMS rotation, hardcoded keys, no backup, no CloudTrail
Kubernetes: run-as-root, no readOnly FS, hostPath, hostPID/IPC, no NetworkPolicy, privileged, SYS_ADMIN, no seccomp, no probes, no security context
Docker: no USER directive, no HEALTHCHECK, privileged, no resource limits, secrets in env, :latest
Docker Compose: no resource limits, secrets in environment, privileged, host network, weak restart policy
GitHub Actions: script injection, write-all permissions, unpinned actions
CI/CD: GitLab secrets in YAML, Jenkins credentials, CircleCI context, AWS CDK secrets, CloudFormation, Helm, Ansible, Pulumi
VibeGuard is the only scanner that protects user privacy, not just security:
WebRTC IP leak, clipboard reads, geolocation, camera/microphone
Canvas fingerprinting, device fingerprinting, Bluetooth scanning
Analytics without consent (Google Analytics, Mixpanel, Segment, PostHog, Amplitude, Facebook Pixel, Hotjar, FullStory)
Cookies without banner (ePrivacy/GDPR)
Sentry with PII, PII in logs, health data access, biometric data
Background location, contacts/photos/SMS/call log access
EXIF location leak, keystroke listeners, SRI missing
vibeguard privacy-audit # inventory all PII collection, storage, transmission
vibeguard net-audit # map every outbound HTTP call (where does data go?)
vibeguard ai-guard # detect user data sent to AI APIs without redaction
vibeguard privacy-policy # auto-generate a privacy policy from code analysis
vibeguard csp-generate # auto-generate Content-Security-Policy from code
vibeguard firewall <prompt> # AI firewall — inspect prompt before sending to LLM
vibeguard agent-guard # show blocked paths, commands, domains
vibeguard exfil-check <data> # check data for PII/secrets before sending externally
vibeguard dep-firewall <pkg> # check package name before npm install
vibeguard sandbox <code> # execute code in zero-trust sandbox
vibeguard output-guard <text> # sanitize AI response for secrets/PII
vibeguard env-lock # lock environment variables — hide secrets from AI
vibeguard self-check # verify VibeGuard hasn't been tampered with
vibeguard pre-deploy # run all 13 security gates before deploymentPII Detection & Redaction
const { detectPII, redactText } = require('vibeguard/pii');
const text = 'Contact john@example.com or 555-123-4567. Card: 4242424242424242';
const detected = detectPII(text); // [{ type: 'email', ... }, { type: 'credit-card', ... }]
const safe = redactText(text); // 'Contact [REDACTED_EMAIL] or [REDACTED_PHONE]. Card: ****4242'Detected types: email, phone, SSN, credit card (Luhn-validated), AWS keys, JWTs, private keys, IP addresses, IBANs, MAC addresses.
Run all 13 security gates before deployment. If ANY gate fails, deployment is blocked.
vibeguard pre-deploy # run all gates
vibeguard pre-deploy --strict # fail on warnings too
vibeguard pre-deploy --json # JSON output for CI/CD# | Gate | What It Checks |
1 | Static Scan | 699 rules — any critical? |
2 | Secret Scan | Secrets exposed in code? |
3 | Git History | .env tracked in git? |
4 | Dependency Audit | Slopsquat/typosquat? |
5 | Supply Chain | Lockfile, scripts, licenses? |
6 | Privacy Audit | PII collection/storage/transmission? |
7 | Network Audit | Suspicious outbound domains? |
8 | AI Data Guard | User data to AI APIs without redaction? |
9 | Compliance | SOC2/PCI/HIPAA/GDPR? |
10 | Config Check | .env in .gitignore? MCP installed? |
11 | Self-Check | All VibeGuard modules intact? |
12 | Tamper Check | No tampering with VibeGuard? |
13 | Behavioral Check | No suspicious patterns? |
VibeGuard never sends your code, secrets, API keys, or personal information anywhere.
What | Network? | When |
| Never | Local file read + regex match |
| Never | Local file edit |
| Never | Local config write |
| Never | stdio transport only |
| Opt-in | Package name → OSV.dev (free API) |
| Opt-in | URL you type → fetch headers |
| Opt-in | Key → provider that owns it |
No telemetry. No analytics. No tracking. No data collection. No uploads.
vibeguard preset nextjs # Next.js + React
vibeguard preset django # Django + Python
vibeguard preset rails # Ruby on Rails
vibeguard preset spring # Spring Boot + Java
vibeguard preset aws # AWS / Terraform
vibeguard preset gcp # Google Cloud
vibeguard preset azure # Azure
vibeguard preset api # REST / GraphQL API
vibeguard preset mobile # React Native / mobile
vibeguard preset fullstack # all rules (maximum coverage)vibeguard init-ci # GitHub Actions (SARIF + fail on CRITICAL)
vibeguard install-hook # git pre-commit hook (blocks on critical)
vibeguard install-hook-post # PostToolUse hook (auto-scan after AI edits)
vibeguard pr-comment # GitHub PR comment format (markdown)Templates included for: GitLab CI, Jenkins, CircleCI, Azure Pipelines.
Languages (14): JavaScript, TypeScript, Python, Go, Java, Ruby, PHP, C#, Rust, Kotlin, Swift, Bash, SQL, YAML
Frameworks (20+): Next.js, React, Remix, Astro, SolidStart, SvelteKit, Nuxt, Django, Flask, Rails, Laravel, Spring Boot, NestJS, Fastify, Express, Hono, tRPC, Gin, Echo, Drizzle, Prisma, Sequelize, TypeORM, Kysely, MikroORM, Convex, Turso, Clerk, Auth.js, Supabase, Firebase, Stripe, Polar, LemonSqueezy, Resend, Upstash, Pinecone, PostHog, Uploadthing
Compliance: SOC 2, PCI-DSS, HIPAA, GDPR, ISO 27001, EU AI Act
npm install
npm test # 236 tests
npm run lint # 0 errors
npm run coverage # coverage reportVibeGuard catches the mechanical security holes that AI tools leave behind. It does NOT:
Prove your app is safe or leak-proof
Track personal data end-to-end through your app automatically
Judge business logic flaws
Replace a real security review for anything touching money, auth, or personal data
It raises the floor fast — catching the holes that AI tools create by default.
MIT — Free forever. No ads. No tracking. No data collection.
This server cannot be installed
Maintenance
Resources
Unclaimed servers have limited discoverability.
Looking for Admin?
If you are the server author, to access and configure the admin panel.
Latest Blog Posts
- Your AI Chatbot Just Exposed Your CEO's Salary to an InternBy Om-Shree-0709 on .Agent IdentityMCP SecurityOAuth Delegation
- Why MCP Servers Need Execution Sandboxing (And Why Your Current Stack Isn't Enough)By Om-Shree-0709 on .Agentic AiPrompt InjectionWebAssembly
MCP directory API
We provide all the information about MCP servers via our MCP API.
curl -X GET 'https://glama.ai/api/mcp/v1/servers/yagyeshVyas/VibeGuard'
If you have feedback or need assistance with the MCP directory API, please join our Discord server