Server data from the Official MCP Registry
One-step legal compliance for vibe-coded apps: privacy, terms, cookie banner and EU AI Act check.
One-step legal compliance for vibe-coded apps: privacy, terms, cookie banner and EU AI Act check.
Remote endpoints: streamable-http: https://golexvibe.com/api/mcp
LexVibe MCP is a well-structured legal compliance tool with appropriate permissions for its purpose. It safely calls external APIs, performs filesystem operations only when necessary, and includes proper input validation via Zod. Minor code quality observations (broad error handling, potential network dependency assumptions) do not significantly impact security given the server's read-mostly nature and legitimate use case. Supply chain analysis found 3 known vulnerabilities in dependencies (0 critical, 3 high severity). Package verification found 1 issue.
4 files analyzed · 8 issues found
Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.
This plugin requests these system permissions. Most are normal for its category.
Set these up before or after installing:
Environment variable: LEXVIBE_APP_ID
Environment variable: LEXVIBE_API_URL
Environment variable: LEXVIBE_CDN_URL
Available as Local & Remote
This plugin can run on your machine or connect to a hosted endpoint. during install.
From the project's GitHub README.
LexVibe MCP server — one-step legal compliance for vibe-coded apps (Lovable, Bolt, v0, Next.js, plain HTML). Wire it into your AI assistant (Claude Code, Claude Desktop, Cursor…) and it makes your app "legally ready" without you knowing the law: privacy policy, terms of service, cookie consent banner with real script blocking, and an EU AI Act risk check.
| Tool | What it does |
|---|---|
make_compliant | One step: scan → generate docs into /legal → install the banner snippet → classify EU AI Act risk. |
check_compliance | Read-only readiness report: what was detected, what could be auto-derived, and which human facts are still missing. |
scan_project | Detect analytics, payments, generative AI, email collection, third parties and platforms (web / iOS / Android). |
generate_policies | Generate privacy policy / terms / AI disclosure, localized and tailored per market. |
install_snippet | Insert the cookie-banner snippet before </head>; for JSX layouts it returns exact instructions instead. |
check_ai_act | Classify EU AI Act risk and list the applicable obligations with deadlines. |
claim_app | Create a REAL app in the user's LexVibe account: returns a link the user opens to sign in and confirm (30 min). |
get_claim_status | Poll a claim created with claim_app; once confirmed it returns the real app id, install snippet and policy URL. |
"Make my app legally compliant for the EU and the US."
One make_compliant call: the agent scans the project, writes the localized
policies to /legal, installs the cookie-banner snippet in your HTML head and
returns the EU AI Act classification plus next steps. You just review and
approve.
Draft-first flow: start with check_compliance — it reports what the scan
could figure out on its own and returns an agentPrompt your coding agent can
answer by reading the repo (company entity, contact email, target markets), so
there are no forms to fill.
No app id yet? The agent calls claim_app and hands you a link: open it, sign
in and confirm — that creates the real app in your LexVibe account (hosted,
auto-updated policies and consent proof linked to you). The agent then picks up
the real app id via get_claim_status and replaces any YOUR_APP_ID
placeholder automatically.
npx -y @lexvibe/mcp # or build from source: npm run build -w packages/mcp
.mcp.json in your project, or claude mcp add){
"mcpServers": {
"lexvibe": {
"command": "npx",
"args": ["-y", "@lexvibe/mcp"],
"env": {
"LEXVIBE_APP_ID": "your-app-id"
}
}
}
}
~/.cursor/mcp.json){
"mcpServers": {
"lexvibe": {
"command": "npx",
"args": ["-y", "@lexvibe/mcp"],
"env": {
"LEXVIBE_APP_ID": "your-app-id"
}
}
}
}
Claude Desktop uses the same mcpServers structure in
claude_desktop_config.json.
Browser-based agents that cannot run local processes — claude.ai / Claude Desktop connectors, ChatGPT connectors — can use the hosted remote server instead (Streamable HTTP, no auth):
https://golexvibe.com/api/mcp
The remote server has no filesystem access, so it exposes the remote-safe
subset: check_website, check_store, generate_policies (template-based
drafts, capped for anonymous callers), check_ai_act, get_install_snippet,
plus claim_app / get_claim_status to create a real app in the user's
account. Stdio-only clients can bridge to it with
npx -y mcp-remote https://golexvibe.com/api/mcp.
| Platform | Integration | How |
|---|---|---|
| Claude Code | stdio (or remote) | claude mcp add lexvibe -- npx -y @lexvibe/mcp |
| Cursor / Windsurf / Cline / VS Code | stdio | mcpServers config with npx -y @lexvibe/mcp |
| Zed | stdio (or remote) | context_servers in settings.json |
| Claude Desktop / claude.ai | remote | Settings → Connectors → https://golexvibe.com/api/mcp |
| ChatGPT | remote | Settings → Connectors → https://golexvibe.com/api/mcp |
| Lovable / Bolt / v0 / Base44 / Replit | prompt (no MCP) | Paste the one-liner from https://golexvibe.com/prompt |
Full per-platform setup guide: https://golexvibe.com/docs/integrations
| Variable | Default | Purpose |
|---|---|---|
LEXVIBE_APP_ID | YOUR_APP_ID | Your LexVibe app id (links the snippet to your hosted policies) |
LEXVIBE_API_URL | https://golexvibe.com | LexVibe instance that generates documents and classifies AI risk |
LEXVIBE_CDN_URL | https://golexvibe.com | Host the widget script is served from (self-hosting only) |
Side effects:
scan_project,check_compliance,check_ai_actandget_claim_statusare read-only (the AI Act check and the claim poll call the LexVibe API).generate_policiescalls the API and returns Markdown.install_snippetedits one file on your local filesystem (only when it contains</head>).make_compliantdoes both: it calls the API and writes files (/legal/*.mdplus the snippet in your HTML head).claim_appcreates a pending claim in LexVibe; the app itself is only created when the user confirms the link while signed in.
Be the first to review this server!
by Modelcontextprotocol · Developer Tools
Web content fetching and conversion for efficient LLM usage
by Modelcontextprotocol · Developer Tools
Read, search, and manipulate Git repositories programmatically
by Toleno · Developer Tools
Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.