diff --git a/README.md b/README.md index 98aa70dee..19b3d2a09 100644 --- a/README.md +++ b/README.md @@ -2853,6 +2853,7 @@ Tools for conducting research, surveys, interviews, and data collection. - [Skyrxin/sast-mcp-server](https://github.com/Skyrxin/sast-mcp-server) [![Skyrxin/sast-mcp-server MCP server](https://glama.ai/mcp/servers/Skyrxin/sast-mcp-server/badges/score.svg)](https://glama.ai/mcp/servers/Skyrxin/sast-mcp-server) ๐Ÿ ๐Ÿ  ๐ŸŽ ๐ŸชŸ ๐Ÿง - SAST/DAST server exposing 11 security scanners (Bandit, Semgrep, Trivy, CodeQL, Checkov, Gitleaks, OSV-Scanner, Grype, OWASP ZAP, and more) with closed-loop remediation (scanโ†’patchโ†’re-scanโ†’verify), SARIF/SBOM/VEX export, compliance reporting, and CI integrations (GitHub Advanced Security, DefectDojo, Slack, Jira). - [snyk/studio-mcp](https://github.com/snyk/studio-mcp) ๐ŸŽ–๏ธ ๐Ÿ“‡ โ˜๏ธ ๐ŸŽ ๐ŸชŸ ๐Ÿง - Embeds Snyk's security engines into agentic workflows. Secures AI-generated code in real-time and accelerates the fixing vulnerability backlogs. - [StacklokLabs/osv-mcp](https://github.com/StacklokLabs/osv-mcp) ๐ŸŽ๏ธ โ˜๏ธ - Access the OSV (Open Source Vulnerabilities) database for vulnerability information. Query vulnerabilities by package version or commit, batch query multiple packages, and get detailed vulnerability information by ID. +- [Synvoya/codeinspectus](https://github.com/Synvoya/codeinspectus) [![codeinspectus MCP server](https://glama.ai/mcp/servers/Synvoya/codeinspectus/badges/score.svg)](https://glama.ai/mcp/servers/Synvoya/codeinspectus) ๐Ÿ“‡ ๐Ÿ  ๐ŸŽ - Local-first, zero-egress security scanner for AI-generated / "vibe-coded" JS/TS. Bundles Opengrep, Gitleaks & Trivy behind one CWE-keyed schema and adds AI-code-specific checks (client-side secret exposure, Supabase RLS, prompt-injection & LLM-output XSS sinks). No account, no telemetry. - [velvetway/minreestr-mcp](https://github.com/velvetway/minreestr-mcp) [![velvetway/minreestr-mcp MCP server](https://glama.ai/mcp/servers/velvetway/minreestr-mcp/badges/score.svg)](https://glama.ai/mcp/servers/velvetway/minreestr-mcp) ๐Ÿ โ˜๏ธ ๐ŸŽ ๐ŸชŸ ๐Ÿง - Search ะบะฐั‚ะฐะปะพะณะฟะพ.ั€ั„ (Russian software registry, 26k+ products) for import-substitution and ะคะกะขะญะš/ะคะกะ‘-certified software discovery. Three tools: full-text search, manufacturer listing, featured products. Ideal for Russian security/compliance teams (152-ะคะ—, 187-ะคะ—) using Claude. - [vespo92/OPNSenseMCP](https://github.com/vespo92/OPNSenseMCP) ๐Ÿ“‡ ๐Ÿ  - MCP Server for managing & interacting with Open Source NGFW OPNSense via Natural Language - [wei9072/aegis](https://github.com/wei9072/aegis) [![wei9072/aegis MCP server](https://glama.ai/mcp/servers/wei9072/aegis/badges/score.svg)](https://glama.ai/mcp/servers/wei9072/aegis) ๐Ÿฆ€ ๐Ÿ  ๐ŸŽ ๐ŸชŸ ๐Ÿง - AI-agent admission-control MCP server: validates file edits against Ring 0 syntax + Ring 0.5 structural-cost regression + workspace boundary (path / glob / shell-redirect / symlink). Negative-space framing โ€” emits BLOCK / WARN / PASS verdicts, never coaches the agent.