From 5d265d31e75637bdd3762f0aa1ed48908875fa40 Mon Sep 17 00:00:00 2001 From: Synvoya Date: Tue, 7 Jul 2026 11:45:18 +1000 Subject: [PATCH 1/2] Add CodeInspectus to Security --- README.md | 1 + 1 file changed, 1 insertion(+) diff --git a/README.md b/README.md index 5b03c3aeb..5cd62acc1 100644 --- a/README.md +++ b/README.md @@ -2760,6 +2760,7 @@ Tools for conducting research, surveys, interviews, and data collection. - [Skyrxin/sast-mcp-server](https://github.com/Skyrxin/sast-mcp-server) [![Skyrxin/sast-mcp-server MCP server](https://glama.ai/mcp/servers/Skyrxin/sast-mcp-server/badges/score.svg)](https://glama.ai/mcp/servers/Skyrxin/sast-mcp-server) 🐍 🏠 🍎 πŸͺŸ 🐧 - SAST/DAST server exposing 11 security scanners (Bandit, Semgrep, Trivy, CodeQL, Checkov, Gitleaks, OSV-Scanner, Grype, OWASP ZAP, and more) with closed-loop remediation (scanβ†’patchβ†’re-scanβ†’verify), SARIF/SBOM/VEX export, compliance reporting, and CI integrations (GitHub Advanced Security, DefectDojo, Slack, Jira). - [snyk/studio-mcp](https://github.com/snyk/studio-mcp) πŸŽ–οΈ πŸ“‡ ☁️ 🍎 πŸͺŸ 🐧 - Embeds Snyk's security engines into agentic workflows. Secures AI-generated code in real-time and accelerates the fixing vulnerability backlogs. - [StacklokLabs/osv-mcp](https://github.com/StacklokLabs/osv-mcp) 🏎️ ☁️ - Access the OSV (Open Source Vulnerabilities) database for vulnerability information. Query vulnerabilities by package version or commit, batch query multiple packages, and get detailed vulnerability information by ID. +- [Synvoya/codeinspectus](https://github.com/Synvoya/codeinspectus) πŸ“‡ 🏠 🍎 - Local-first, zero-egress security scanner for AI-generated / "vibe-coded" JS/TS. Bundles Opengrep, Gitleaks & Trivy behind one CWE-keyed schema and adds AI-code-specific checks (client-side secret exposure, Supabase RLS, prompt-injection & LLM-output XSS sinks). No account, no telemetry. - [velvetway/minreestr-mcp](https://github.com/velvetway/minreestr-mcp) [![velvetway/minreestr-mcp MCP server](https://glama.ai/mcp/servers/velvetway/minreestr-mcp/badges/score.svg)](https://glama.ai/mcp/servers/velvetway/minreestr-mcp) 🐍 ☁️ 🍎 πŸͺŸ 🐧 - Search ΠΊΠ°Ρ‚Π°Π»ΠΎΠ³ΠΏΠΎ.Ρ€Ρ„ (Russian software registry, 26k+ products) for import-substitution and ЀБВЭК/Π€Π‘Π‘-certified software discovery. Three tools: full-text search, manufacturer listing, featured products. Ideal for Russian security/compliance teams (152-Π€Π—, 187-Π€Π—) using Claude. - [vespo92/OPNSenseMCP](https://github.com/vespo92/OPNSenseMCP) πŸ“‡ 🏠 - MCP Server for managing & interacting with Open Source NGFW OPNSense via Natural Language - [wei9072/aegis](https://github.com/wei9072/aegis) [![wei9072/aegis MCP server](https://glama.ai/mcp/servers/wei9072/aegis/badges/score.svg)](https://glama.ai/mcp/servers/wei9072/aegis) πŸ¦€ 🏠 🍎 πŸͺŸ 🐧 - AI-agent admission-control MCP server: validates file edits against Ring 0 syntax + Ring 0.5 structural-cost regression + workspace boundary (path / glob / shell-redirect / symlink). Negative-space framing β€” emits BLOCK / WARN / PASS verdicts, never coaches the agent. From 1cc8963114d91a4cb6b4754ebd7d69b9efd0fed9 Mon Sep 17 00:00:00 2001 From: Synvoya Date: Tue, 7 Jul 2026 14:40:35 +1000 Subject: [PATCH 2/2] Add Glama score badge to CodeInspectus entry --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index 5cd62acc1..03a9e6ee6 100644 --- a/README.md +++ b/README.md @@ -2760,7 +2760,7 @@ Tools for conducting research, surveys, interviews, and data collection. - [Skyrxin/sast-mcp-server](https://github.com/Skyrxin/sast-mcp-server) [![Skyrxin/sast-mcp-server MCP server](https://glama.ai/mcp/servers/Skyrxin/sast-mcp-server/badges/score.svg)](https://glama.ai/mcp/servers/Skyrxin/sast-mcp-server) 🐍 🏠 🍎 πŸͺŸ 🐧 - SAST/DAST server exposing 11 security scanners (Bandit, Semgrep, Trivy, CodeQL, Checkov, Gitleaks, OSV-Scanner, Grype, OWASP ZAP, and more) with closed-loop remediation (scanβ†’patchβ†’re-scanβ†’verify), SARIF/SBOM/VEX export, compliance reporting, and CI integrations (GitHub Advanced Security, DefectDojo, Slack, Jira). - [snyk/studio-mcp](https://github.com/snyk/studio-mcp) πŸŽ–οΈ πŸ“‡ ☁️ 🍎 πŸͺŸ 🐧 - Embeds Snyk's security engines into agentic workflows. Secures AI-generated code in real-time and accelerates the fixing vulnerability backlogs. - [StacklokLabs/osv-mcp](https://github.com/StacklokLabs/osv-mcp) 🏎️ ☁️ - Access the OSV (Open Source Vulnerabilities) database for vulnerability information. Query vulnerabilities by package version or commit, batch query multiple packages, and get detailed vulnerability information by ID. -- [Synvoya/codeinspectus](https://github.com/Synvoya/codeinspectus) πŸ“‡ 🏠 🍎 - Local-first, zero-egress security scanner for AI-generated / "vibe-coded" JS/TS. Bundles Opengrep, Gitleaks & Trivy behind one CWE-keyed schema and adds AI-code-specific checks (client-side secret exposure, Supabase RLS, prompt-injection & LLM-output XSS sinks). No account, no telemetry. +- [Synvoya/codeinspectus](https://github.com/Synvoya/codeinspectus) [![codeinspectus MCP server](https://glama.ai/mcp/servers/Synvoya/codeinspectus/badges/score.svg)](https://glama.ai/mcp/servers/Synvoya/codeinspectus) πŸ“‡ 🏠 🍎 - Local-first, zero-egress security scanner for AI-generated / "vibe-coded" JS/TS. Bundles Opengrep, Gitleaks & Trivy behind one CWE-keyed schema and adds AI-code-specific checks (client-side secret exposure, Supabase RLS, prompt-injection & LLM-output XSS sinks). No account, no telemetry. - [velvetway/minreestr-mcp](https://github.com/velvetway/minreestr-mcp) [![velvetway/minreestr-mcp MCP server](https://glama.ai/mcp/servers/velvetway/minreestr-mcp/badges/score.svg)](https://glama.ai/mcp/servers/velvetway/minreestr-mcp) 🐍 ☁️ 🍎 πŸͺŸ 🐧 - Search ΠΊΠ°Ρ‚Π°Π»ΠΎΠ³ΠΏΠΎ.Ρ€Ρ„ (Russian software registry, 26k+ products) for import-substitution and ЀБВЭК/Π€Π‘Π‘-certified software discovery. Three tools: full-text search, manufacturer listing, featured products. Ideal for Russian security/compliance teams (152-Π€Π—, 187-Π€Π—) using Claude. - [vespo92/OPNSenseMCP](https://github.com/vespo92/OPNSenseMCP) πŸ“‡ 🏠 - MCP Server for managing & interacting with Open Source NGFW OPNSense via Natural Language - [wei9072/aegis](https://github.com/wei9072/aegis) [![wei9072/aegis MCP server](https://glama.ai/mcp/servers/wei9072/aegis/badges/score.svg)](https://glama.ai/mcp/servers/wei9072/aegis) πŸ¦€ 🏠 🍎 πŸͺŸ 🐧 - AI-agent admission-control MCP server: validates file edits against Ring 0 syntax + Ring 0.5 structural-cost regression + workspace boundary (path / glob / shell-redirect / symlink). Negative-space framing β€” emits BLOCK / WARN / PASS verdicts, never coaches the agent.