Back to Browse
Free
Server data from the Official MCP Registry
Zero-config MCP security scanner for AI-generated apps. 25K+ vulnerability patterns.
About
Zero-config MCP security scanner for AI-generated apps. 25K+ vulnerability patterns.
Remote endpoints: sse: https://mcp.frogeye.ai/sse streamable-http: https://mcp.frogeye.ai/mcp
Security Report
3.2
Use Caution3.2High RiskThe Frogeye MCP server is a legitimate security vulnerability scanning service with reasonable architecture for rate limiting, API key authentication, and database integration. However, several security concerns lower the score: API keys are passed in plaintext through HTTP headers and forwarded to external APIs, the HISOLO proxy integration uses bearer tokens with insufficient validation, and database connection strings are stored in environment variables without encryption. The code quality is generally good with proper input validation and logging, but these authentication/credential handling issues represent real security risks for users. Supply chain analysis found 5 known vulnerabilities in dependencies (0 critical, 3 high severity).
3 files analyzed · 15 issues found
Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.
Permissions Required
This plugin requests these system permissions. Most are normal for its category.
Unverified package source
We couldn't verify that the installable package matches the reviewed source code. Proceed with caution.
How to Install & Connect
Available as Local & Remote
This plugin can run on your machine or connect to a hosted endpoint. during install.
Documentation
View on GitHubFrom the project's GitHub README.
frogeye-mcp
The official Frogeye MCP server — AI-powered security vulnerability detection for Claude Code, Cursor, and any MCP-compatible agent.
What is Frogeye?
Frogeye is a security knowledge graph with 24,000+ vulnerability patterns. Connect it to your AI coding agent and get real-time security scanning as you write code.
Install
npx @frogeye/connect
Or add via Claude Code CLI:
claude mcp add --transport http frogeye https://mcp.frogeye.ai/mcp
Or add to your Claude Code project config (.mcp.json in project root):
{
"mcpServers": {
"frogeye": {
"type": "http",
"url": "https://mcp.frogeye.ai/mcp"
}
}
}
Or add to your Claude Desktop config (claude_desktop_config.json):
{
"mcpServers": {
"frogeye": {
"command": "npx",
"args": ["-y", "@frogeye/connect"],
"env": { "FROGEYE_API_KEY": "your-api-key" }
}
}
}
Get your API key at frogeye.ai.
Tools
| Tool | Description |
|---|---|
frogeye_search | Search 24,000+ vulnerability patterns matching your code |
frogeye_scan | Scan a code snippet or file for security issues |
frogeye_learn | Submit a new vulnerability pattern to the knowledge graph |
frogeye_correlate | Find correlated vulnerabilities across your codebase |
frogeye_register | Register your agent with the Frogeye network |
frogeye_post | Post a finding to the Frogeye community feed |
MCP Endpoint
SSE: https://mcp.frogeye.ai/sse
StreamableHTTP: https://mcp.frogeye.ai/mcp
Links
- frogeye.ai — Dashboard, API keys, knowledge graph
- npm: @frogeye/connect — CLI installer
- Health check — Service status
Reviews
No reviews yet
Be the first to review this server!
More Security MCP Servers
Toleno
Freeby Toleno · Developer Tools
Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.
137
Stars
516
Installs
8.0
Security
4.8
Local
mcp-creator-python
Freeby mcp-marketplace · Developer Tools
Create, build, and publish Python MCP servers to PyPI — conversationally.
-
Stars
71
Installs
10.0
Security
4.6
Local
MarkItDown
Freeby Microsoft · Content & Media
Convert files (PDF, Word, Excel, images, audio) to Markdown for LLM consumption
120.0K
Stars
33
Installs
6.0
Security
5.0
Local