Back to Browse
Free
Server data from the Official MCP Registry
Symbiotic CLI MCP Server for security scanning and analysis
About
Symbiotic CLI MCP Server for security scanning and analysis
Security Report
7.7
Moderate7.7Low RiskValid MCP server (3 strong, 4 medium validity signals). 2 known CVEs in dependencies (0 critical, 2 high severity) ⚠️ Package registry links to a different repository than scanned source. Imported from the Official MCP Registry. 1 finding(s) downgraded by scanner intelligence.
12 files analyzed · 3 issues found
Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.
Permissions Required
This plugin requests these system permissions. Most are normal for its category.
What You'll Need
Set these up before or after installing:
Your Symbiotic Security personal access tokenRequired
Environment variable: SYMBIOTIC_API_TOKEN
How to Install
Add this to your MCP configuration file:
{
"mcpServers": {
"io-github-symbioticsec-mcp": {
"env": {
"SYMBIOTIC_API_TOKEN": "your-symbiotic-api-token-here"
},
"args": [
"-y",
"symbiotic-mcp-server"
],
"command": "npx"
}
}
}Documentation
View on GitHubFrom the project's GitHub README.
Symbiotic MCP Server
A Model Context Protocol (MCP) server for security analysis using Symbiotic CLI
Description
This server exposes security analysis tools via the MCP protocol for any MCP-compatible client. It allows scanning code and infrastructure files without affecting your workspace.
Available Tools
code_scan_files- Static code analysisinfra_scan_files- Infrastructure security scanningsecurity_scan_files- Comprehensive security scan (code + infrastructure)get_supported_languages- List of supported programming languages
Cursor Integration
Setting up the Security Review Command
- Create a
.cursordirectory in your project root if it doesn't exist - Create or update
.cursor/commands/security-review.mdwith the contents of security-review.md
Using the Command
- Open the chat panel in Cursor (Cmd+L or Ctrl+L)
- Type
/security-reviewfollowed by optional file paths or glob patterns - The command will perform a comprehensive security analysis, including:
- Scanning selected files or the entire workspace
- Analyzing for security vulnerabilities
- Triaging findings and filtering false positives
- Providing a detailed report with severity levels and remediation suggestions
- Offering to apply automatic fixes for identified issues
Installation
- Install symbiotic-cli
https://github.com/SymbioticSec/cli/releases
- Get API token
Create an account on Symbiotic Security and retrieve your API token.
- Build and start
Clone this repository and install dependencies:
npm install
npm run build
MCP Configuration
In VSCode, open MCP: Open User Configuration and add in servers:
{
"servers": {
"symbiotic-security": {
"command": "node",
"args": ["path/to/build/index.js"],
"env": {
"SYMBIOTIC_API_TOKEN": "your_token_here",
}
},
}
Configuration for other MCP clients may vary but generally follows the same structure.
{
"mcpServers": {
"symbiotic-security": {
"command": "node",
"args": ["path/to/build/index.js"],
"env": {
"SYMBIOTIC_API_TOKEN": "your_token_here"
}
}
}
}
Important environment variables:
SYMBIOTIC_API_TOKEN(required) - Your Symbiotic API token
Note: Configuration file name and location may vary depending on your MCP client.
Transport Modes
- STDIO (default) - Standard communication for MCP
- SSE - Server-Sent Events over HTTP
- Streamable HTTP - HTTP with
/mcpendpoint
# STDIO (default)
node build/index.js
# HTTP server on port 9593
SERVER_PORT=9593 node build/index.js
Authentication
The server requires a valid Symbiotic Security API token. Configuration is done via MCP environment variables.
Minimal required configuration:
"env": {
"SYMBIOTIC_API_TOKEN": "your_token_here"
}
How It Works
- Receives code files via MCP
- Creates temporary files
- Executes
symbiotic-cli - Automatic cleanup of temporary files
- Returns formatted results
Reviews
No reviews yet
Be the first to review this server!
More Developer Tools MCP Servers
Git
Freeby Modelcontextprotocol · Developer Tools
Read, search, and manipulate Git repositories programmatically
80.0K
Stars
4
Installs
6.5
Security
No ratings yet
Local
Toleno
Freeby Toleno · Developer Tools
Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.
114
Stars
409
Installs
8.0
Security
4.8
Local
mcp-creator-python
Freeby mcp-marketplace · Developer Tools
Create, build, and publish Python MCP servers to PyPI — conversationally.
-
Stars
56
Installs
10.0
Security
5.0
Local
MarkItDown
Freeby Microsoft · Content & Media
Convert files (PDF, Word, Excel, images, audio) to Markdown for LLM consumption
116.1K
Stars
15
Installs
6.0
Security
5.0
Local
mcp-creator-typescript
Freeby mcp-marketplace · Developer Tools
Scaffold, build, and publish TypeScript MCP servers to npm — conversationally
-
Stars
14
Installs
10.0
Security
5.0
Local
FinAgent
Freeby mcp-marketplace · Finance
Free stock data and market news for any MCP-compatible AI assistant.
-
Stars
13
Installs
10.0
Security
No ratings yet
Local