osv-ui-mcp
MCP ServerFreeVisual CVE audit dashboard for npm, Python, Go, and Rust. Scan from Claude/Cursor, opens browser UI for human review, applies fixes with explicit confirmation. Powered by OSV.dev.
Capabilities3 decomposed
cve scanning and auditing for multiple languages
Medium confidenceThis capability allows users to scan their codebases in npm, Python, Go, and Rust for known vulnerabilities using the OSV.dev database. It integrates with Claude/Cursor to initiate scans and opens a browser-based UI for human review, ensuring that developers can manually confirm any identified vulnerabilities before applying fixes. This approach emphasizes a human-in-the-loop model for critical security decisions, distinguishing it from fully automated solutions.
Utilizes a human review process via a browser UI, allowing for explicit confirmation of fixes, which enhances security oversight.
More secure than automated patching tools as it requires human validation of fixes.
browser-based vulnerability review interface
Medium confidenceThis capability provides a web-based user interface that displays the results of CVE scans in an organized manner. It allows developers to review vulnerabilities in detail, including descriptions, severity levels, and suggested fixes. The interface is designed for clarity and ease of use, enabling quick decision-making on whether to apply fixes or not, which is crucial for maintaining code security.
Features a dedicated browser interface that enhances user interaction and decision-making for vulnerability management.
More user-friendly than command-line tools, providing a visual overview of vulnerabilities.
explicit confirmation for applying fixes
Medium confidenceThis capability ensures that any fixes for identified vulnerabilities are not applied automatically but require explicit confirmation from the user. This is implemented through a confirmation dialog in the browser UI that presents the proposed changes, allowing developers to review and approve each fix before it is executed. This design choice minimizes the risk of unintended consequences from automated patching.
Incorporates a manual confirmation step for fixes, enhancing security by preventing unintended changes.
Safer than tools that apply fixes automatically without user consent.
Capabilities are decomposed by AI analysis. Each maps to specific user intents and improves with match feedback.
Related Artifactssharing capabilities
Artifacts that share capabilities with osv-ui-mcp, ranked by overlap. Discovered automatically through the match graph.
VSGuard
Add proactive OWASP ASVS security guidance to coding AI agents to write secure code from the start. Scan code for cybersecurity vulnerabilities across multiple languages and receive clear findings with remediation steps. Generate secure fixes with ASVS-mapped guidance and ready-to-use examples.
GitHub Copilot modernization
Upgrade and migrate your applications to Azure
Coderbuds
Coderbuds is a code review tool that automates the code review process, providing feedback and recommendations to...
Blackbox AI
Software That Builds Software
GitHub Copilot modernization - upgrade for Java
Upgrade Java project with GitHub Copilot
Unveiling the Untold Story of Blackbox.ai: A Revolution in Software Quality Assurance
</details>
Best For
- ✓developers managing security audits in multi-language projects
- ✓security teams conducting detailed vulnerability assessments
- ✓developers who prioritize security and manual oversight
Known Limitations
- ⚠Requires manual confirmation for fixes, which may slow down the remediation process.
- ⚠Dependent on a stable internet connection for UI access.
- ⚠May slow down the remediation process due to required confirmations.
Requirements
Input / Output
UnfragileRank
UnfragileRank is computed from adoption signals, documentation quality, ecosystem connectivity, match graph feedback, and freshness. No artifact can pay for a higher rank.
Repository Details
About
Visual CVE audit dashboard for npm, Python, Go, and Rust. Scan from Claude/Cursor, opens browser UI for human review, applies fixes with explicit confirmation. Powered by OSV.dev.
Categories
Alternatives to osv-ui-mcp
Search the Supabase docs for up-to-date guidance and troubleshoot errors quickly. Manage organizations, projects, databases, and Edge Functions, including migrations, SQL, logs, advisors, keys, and type generation, in one flow. Create and manage development branches to iterate safely, confirm costs
Compare →AI-optimized web search and content extraction via Tavily MCP.
Compare →Scrape websites and extract structured data via Firecrawl MCP.
Compare →Are you the builder of osv-ui-mcp?
Claim this artifact to get a verified badge, access match analytics, see which intents users search for, and manage your listing.
Get the weekly brief
New tools, rising stars, and what's actually worth your time. No spam.
Data Sources
Looking for something else?
Search →