GitGuardian MCP Server

$uvx --from git+https://github.com/GitGuardian/ggmcp.git developer-mcp-server
README.md

Scan projects for leaked secrets and manage security incidents via API.

GitGuardian MCP Server

Stay focused on building your product while your AI assistant handles the security heavy lifting with GitGuardian's comprehensive protection.

This MCP server enables your AI agent to scan projects using GitGuardian's industry-leading API, featuring over 500 secret detectors to prevent credential leaks before they reach public repositories.

Resolve security incidents without context switching to the GitGuardian console. Take advantage of rich contextual data to enhance your agent's remediation capabilities, enabling rapid resolution and automated removal of hardcoded secrets.

Disclaimer

[!CAUTION] MCP servers are an emerging and rapidly evolving technology. While they can significantly boost productivity and improve the developer experience, their use with various agents and models should always be supervised.

Agents act on your behalf and under your responsibility. Always use MCP servers from trusted sources (just as you would with any dependency), and carefully review agent actions when they interact with MCP server tools.

To better assist you in safely using this server, we have:

(1) Designed our MCP server to operate with "read-only" permissions, minimizing the access level granted to your agent. This helps ensure that, even if the agent tries to perform unintended actions, its capabilities remain limited to safe, non-destructive operations.

(2) Released this official MCP server to ensure you are using a legitimate and trusted implementation.

Features supported

  • Secret Scanning: Scan code for leaked secrets, credentials, and API keys
  • Incident Management: View security incidents related to the project you are currently working.
  • Honeytokens: Create honeytokens to detect unauthorized access
  • Authentication Management: Get authenticated user information and token details
  • Token Management: Revoke current API tokens

Want more features? Have a use case that's not covered? We'd love to hear from you! Submit your ideas and feedback by opening an issue on GitHub to help us prioritize new MCP server capabilities.

Prompts examples

Remediate all incidents related to my project

Scan this codebase for any leaked secrets or credentials

Check if there are any new security incidents assigned to me

Help me understand this security incident and provide remediation steps

List all my active honeytokens

Generate a new honeytoken for monitoring AWS credential access

Show me my most recent honeytoken and help me embed it in my codebase

Create a honeytoken named 'dev-database' and hide it in config files

Prerequisites

Before installing the GitGuardian MCP servers, ensure you have the following prerequisites:

Installation

Below are instructions for installing the GitGuardian MCP servers with various AI editors and interfaces.

The MCP server supports both GitGuardian SaaS and self-hosted instances.

Installation with Cursor

Quick Install with One-Click Buttons (Cursor >= 1.0):

For Developer MCP Server:

Note: The one-click install sets up the default US SaaS configuration. For EU SaaS or self-hosted instances, you'll need to manually add environment variables as shown in the Configuration section.

Manual Configuration:

  1. Edit your Cursor MCP configuration file located at ~/.cursor/mcp.json

  2. Add the GitGuardian MCP server configuration:

    {
  "mcpServers": {
    "GitGuardianDeveloper": {
      "command": "uvx",
      "args": [
        "--from",
        "git+https://github.com/GitGuardian/ggmcp.git",
        "developer-mcp-server"
      ]
    }
  }
}

Installation with Claude Desktop

  1. Edit your Claude Desktop MCP configuration file located at:

    • macOS: ~/Library/Application Support/Claude Desktop/mcp.json
    • Windows: %APPDATA%\Claude Desktop\mcp.json

  2. Add the GitGuardian MCP server configuration:

    {
  "mcpServers": {
    "GitGuardianDeveloper": {
      "command": "/path/to/uvx",
      "args": [
        "--from",
        "git+https://github.com/GitGuardian/ggmcp.git",
        "developer-mcp-server"
      ]
    }
  }
}

  3. Replace /path/to/uvx with the absolute path to the uvx executable on your system.

    ⚠️ WARNING: For Claude Desktop, you must specify the full absolut

Tools (5)

secret_scanningScan code for leaked secrets, credentials, and API keys using over 500 detectors.
incident_managementView and manage security incidents related to the current project.
honeytokensCreate and list honeytokens to detect unauthorized access.
authentication_managementGet authenticated user information and token details.
token_managementRevoke current API tokens.

Configuration

claude_desktop_config.json
{
  "mcpServers": {
    "GitGuardianDeveloper": {
      "command": "uvx",
      "args": [
        "--from",
        "git+https://github.com/GitGuardian/ggmcp.git",
        "developer-mcp-server"
      ]
    }
  }
}

Try it

Scan this codebase for any leaked secrets or credentials
Remediate all incidents related to my project
Check if there are any new security incidents assigned to me
Generate a new honeytoken for monitoring AWS credential access
Create a honeytoken named 'dev-database' and hide it in config files

Frequently Asked Questions

What are the key features of GitGuardian MCP Server?

Secret Scanning with over 500 detectors to prevent credential leaks. Incident Management for viewing and resolving security issues without context switching. Honeytoken Creation to detect unauthorized access to sensitive environments. Read-only safety design to minimize access levels granted to AI agents. Support for both GitGuardian SaaS and self-hosted instances.

What can I use GitGuardian MCP Server for?

Automated security auditing of local codebases before pushing to public repositories. Rapid remediation of hardcoded secrets using AI-driven contextual data. Proactive threat detection by deploying honeytokens in configuration files. Streamlined security incident tracking directly within the developer's IDE.

How do I install GitGuardian MCP Server?

Install GitGuardian MCP Server by running: uvx --from git+https://github.com/GitGuardian/ggmcp.git developer-mcp-server

What MCP clients work with GitGuardian MCP Server?

GitGuardian MCP Server works with any MCP-compatible client including Claude Desktop, Claude Code, Cursor, and other editors with MCP support.

Use GitGuardian MCP Server with Conare

Manage MCP servers visually, upload persistent context, and never start from zero with Claude Code & Codex.

Try Free

Related MCP Servers

Better Icons
Search and retrieve 200,000+ icons from 150+ icon collections.
ai-tools400 stars
Claude Recall
Long-term memory layer for MoltBot & Claude Code that learns and recalls your project context automatically.
ai-tools237 stars
MemoryGraph
Graph-based MCP memory server for AI coding agents
ai-tools160 stars
Cometix Indexer
Local indexing and retrieval service for semantic code search
ai-tools64 stars
DevContext
Empower your development workflow with intelligent context awareness
ai-tools44 stars
Second Opinion MCP
Get instant second opinions from 17 AI platforms and 800,000+ models
ai-tools33 stars