How do I install Blumira?

Blumira is a local plugin. Install it using the provided package and add the generated configuration snippet to your AI app's MCP config file. Then restart your AI app.

What credentials does Blumira need?

Blumira requires the following credentials or environment variables: BLUMIRA_JWT_TOKEN, MCP_TRANSPORT, AUTH_MODE, LOG_LEVEL. You can find setup instructions on the server detail page.

What AI apps work with Blumira?

Blumira uses the Model Context Protocol (MCP) and works with any MCP-compatible AI app, including Claude, ChatGPT / Codex, Gemini, Copilot, Cursor, and more.

Back to Browse

Blumira MCP Server

by Wyre Technology

Developer ToolsUse Caution4.2MCP RegistryLocal

Free

Server data from the Official MCP Registry

MCP server for Blumira SIEM — query findings, evidence, and detection data via the Blumira API.

About

MCP server for Blumira SIEM — query findings, evidence, and detection data via the Blumira API.

Security Report

4.2

Use Caution4.2High Risk

This MCP server for Blumira SIEM integration demonstrates solid architecture and reasonable security practices. Authentication is properly handled through JWT tokens or OAuth2 client credentials with appropriate token caching. However, there are several code quality and permission scoping concerns: sensitive data (IDs, tokens) is logged without sanitization, the HTTP transport allows unauthenticated tool discovery, and the server has broad network access and environment variable permissions that exceed typical category baselines. These issues are not critical but warrant remediation. Supply chain analysis found 5 known vulnerabilities in dependencies (1 critical, 3 high severity).

7 files analyzed · 12 issues found

Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.

Permissions Required

This plugin requests these system permissions. Most are normal for its category.

HTTP Network Access

Connects to external APIs or services over the internet.

env_vars

Check that this permission is expected for this type of plugin.

File System Read

Reads files on your machine. Normal for tools that analyze or process local data.

What You'll Need

Set these up before or after installing:

Blumira API JWT token used to authenticate requestsRequired

Environment variable: BLUMIRA_JWT_TOKEN

Transport mode for the server. Set to 'stdio' for local CLI use; the image defaults to 'http' for gateway hosting.Optional

Environment variable: MCP_TRANSPORT

Credential source: 'env' reads vars locally, 'gateway' expects header injection from the WYRE MCP Gateway.Optional

Environment variable: AUTH_MODE

Log verbosity: debug, info, warn, errorOptional

Environment variable: LOG_LEVEL

How to Install

Add this to your MCP configuration file:

{
  "mcpServers": {
    "io-github-wyre-technology-blumira-mcp": {
      "env": {
        "AUTH_MODE": "your-auth-mode-here",
        "LOG_LEVEL": "your-log-level-here",
        "MCP_TRANSPORT": "your-mcp-transport-here",
        "BLUMIRA_JWT_TOKEN": "your-blumira-jwt-token-here"
      },
      "args": [
        "-y",
        "blumira-mcp"
      ],
      "command": "npx"
    }
  }
}

Documentation

View on GitHub

From the project's GitHub README.

Blumira MCP Server

A Model Context Protocol (MCP) server that provides AI assistants with structured access to Blumira SIEM platform data and operations.

Note: This project is maintained by Wyre Technology.

Quick Start

Claude Desktop — download, open, done:

Download blumira-mcp.mcpb from the latest release
Open the file (double-click or drag into Claude Desktop)
Enter your Blumira JWT token when prompted

No terminal, no JSON editing, no Node.js install required.

Claude Code (CLI):

claude mcp add blumira-mcp \
  -e BLUMIRA_JWT_TOKEN=your-jwt-token \
  -- npx -y github:wyre-technology/blumira-mcp

See Installation for Docker and from-source methods.

Features

🔌 MCP Protocol Compliance: Full support for MCP resources and tools
🛡️ Comprehensive SIEM Coverage: Tools spanning findings, agents/devices, users, resolutions, and MSP account management
🔍 Decision-Tree Navigation: Start with blumira_navigate to explore domains, then dynamically load domain-specific tools
🏢 MSP Multi-Tenant Support: Full MSP endpoint coverage for managing findings, agents, and users across accounts
🔒 Secure Authentication: JWT token or API key (pax8ApiTokenV1) authentication
🌐 Dual Transport: Supports both stdio (local) and HTTP Streamable (remote/Docker) transports
📦 MCPB Packaging: One-click installation via MCP Bundle for desktop clients
🐳 Docker Ready: Containerized deployment with HTTP transport and health checks
⚡ Rate Limiting: Built-in rate limiter respects Blumira API limits
🔎 Rich Filtering: Support for .eq, .in, .gt, .lt, .contains, .regex, and negation operators

Installation

Option 1: MCPB Bundle (Claude Desktop)

The simplest method — no terminal, no JSON editing, no Node.js install required.

Download blumira-mcp.mcpb from the latest release
Open the file (double-click or drag into Claude Desktop)
Enter your Blumira JWT token when prompted

For Claude Code (CLI), one command:

claude mcp add blumira-mcp \
  -e BLUMIRA_JWT_TOKEN=your-jwt-token \
  -- npx -y github:wyre-technology/blumira-mcp

Option 2: Docker

docker compose up

Or pull the pre-built image:

docker run -d \
  -e BLUMIRA_JWT_TOKEN=your-token \
  -p 8080:8080 \
  ghcr.io/wyre-technology/blumira-mcp:latest

Option 3: From Source

git clone https://github.com/wyre-technology/blumira-mcp.git
cd blumira-mcp
npm ci
npm run build

Configuration

Variable	Description	Default
`BLUMIRA_JWT_TOKEN`	JWT token for authentication	—
`MCP_TRANSPORT`	Transport mode (`stdio` or `http`)	`stdio`
`MCP_HTTP_PORT`	HTTP server port	`8080`
`AUTH_MODE`	Auth mode (`env` or `gateway`)	`env`
`LOG_LEVEL`	Log level (`debug`, `info`, `warn`, `error`)	`info`

Domains

The server uses decision-tree navigation. Start with blumira_navigate to pick a domain:

Domain	Tools
findings	List findings, get finding, get finding details, resolve finding, assign owners, list/add comments
agents	List devices, get device, list agent keys, get agent key
users	List users
resolutions	List available resolutions
msp	List/get accounts, list/get/resolve findings, assign owners, comments, list devices/keys, list users

Filtering

Blumira supports rich query filtering on list endpoints:

status.eq=10              # Exact match
severity.in=HIGH,CRITICAL # Multiple values
created_at.gt=2026-01-01  # Greater than
name.contains=malware     # Substring match
!status.eq=30             # Negation

Pass filters as tool input parameters — the server handles query string construction.

Docker Deployment

Copy .env.example to .env and fill in your credentials:

cp .env.example .env
# Edit .env with your Blumira JWT token
docker compose up -d

Development

npm ci
npm run build       # Build the project
npm run dev         # Watch mode
npm run test        # Run tests
npm run lint        # Type-check
npm run clean       # Remove dist/

Contributing

See CONTRIBUTING.md for guidelines.

License

Apache 2.0 — Copyright WYRE Technology

Reviews

No reviews yet

Be the first to review this server!

More Developer Tools MCP Servers

Git

Free

by Modelcontextprotocol · Developer Tools

Read, search, and manipulate Git repositories programmatically

Toleno

Free

by Toleno · Developer Tools

Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.

mcp-creator-python

Free

by mcp-marketplace · Developer Tools

Create, build, and publish Python MCP servers to PyPI — conversationally.

MarkItDown

Free

by Microsoft · Content & Media

Convert files (PDF, Word, Excel, images, audio) to Markdown for LLM consumption

mcp-creator-typescript

Free

by mcp-marketplace · Developer Tools

Scaffold, build, and publish TypeScript MCP servers to npm — conversationally

FinAgent

Free

by mcp-marketplace · Finance

Free stock data and market news for any MCP-compatible AI assistant.

Blumira MCP Server

About

Security Report

Findings (12)Action required

Permissions Required

What You'll Need

How to Install

Documentation

Blumira MCP Server

Quick Start

Features

Installation

Option 1: MCPB Bundle (Claude Desktop)

Option 2: Docker

Option 3: From Source

Configuration

Domains

Filtering

Docker Deployment

Development

Contributing

License

Reviews

No reviews yet

More Developer Tools MCP Servers

Git

Toleno

mcp-creator-python

MarkItDown

mcp-creator-typescript

FinAgent

Blumira MCP Server

About

Security Report

Findings (12)Action required

Permissions Required

What You'll Need

How to Install

Documentation

Blumira MCP Server

Quick Start

Features

Installation

Option 1: MCPB Bundle (Claude Desktop)

Option 2: Docker

Option 3: From Source

Configuration

Domains

Filtering

Docker Deployment

Development

Contributing

License

Reviews

No reviews yet

More Developer Tools MCP Servers

Git

Toleno

mcp-creator-python

MarkItDown

mcp-creator-typescript

FinAgent