goklab/guardvibe
Security MCP for vibe coding. 277 rules, 22 tools for Next.js, Supabase, Clerk, Stripe, Prisma, tRPC, Hono, GraphQL, Convex, Turso, Uploadthing, AI SDK, and the full AI-generated stack.
Operates as an MCP server with 22 tools designed for AI coding agents—`check_code`, `fix_code`, and `scan_directory` run locally without cloud dependencies or authentication. Focuses on framework-specific vulnerabilities (Next.js Server Actions, Supabase RLS, Prisma injection, Clerk integration flaws) and AI-native threats like prompt injection and MCP server SSRF, complemented by CVE detection for 21 known vulnerable package versions. Integrates pre-commit hooks, GitHub Actions CI/CD with SARIF export, and compliance mapping (SOC2, PCI-DSS, HIPAA) while remaining configuration-free for developers using Claude Code, Cursor, or Gemini CLI.
1 stars and 3,005 monthly downloads. Available on npm.
Stars
1
Forks
—
Language
TypeScript
License
Apache-2.0
Category
Last pushed
Apr 01, 2026
Monthly downloads
3,005
Commits (30d)
0
Dependencies
2
Get this data via API
curl "https://pt-edge.onrender.com/api/v1/quality/mcp/goklab/guardvibe"
Open to everyone — 100 requests/day, no key needed. Get a free key for 1,000/day.
Higher-rated alternatives
sandraschi/pywinauto-mcp
MCP 3.1 Server for Windows Automation with associated webapp Wraps window/UI analysis, mouse,...
initMAX/zabbix-mcp-server
MCP server for the complete Zabbix API — 220 tools, multi-server support, bearer auth, systemd...
guirguispierre/memoryvault
MemoryVault — a self-hosted, graph-aware memory server for AI assistants. Cloudflare Workers + D1 + MCP.
mmethodz/dreamgraph
An autonomous cognitive layer for software systems. It discovers, verifies, and resolves...
mbeato/APIMesh
APIMesh — 23 pay-per-call web analysis APIs + 16-tool MCP server with autonomous API generation....