Browse
→ Infrastructure
→ SafeDep Vet MCP Server
SafeDep Vet MCP Server
MCP server built into SafeDep vet that protects AI-generated code from slopsquatting attacks, malicious packages, known vulnerabilities, and other software supply chain risks. When an AI coding assistant generates dependency recommendations, vet's MCP tools validate packages against vulnerability databases, malware signatures, and package registry metadata in real time. Supports npm, PyPI, Go, Maven, and other major ecosystems. Open source on GitHub. Designed for developers using AI coding assistants who need automated dependency safety checks.
MCP unverified
Integration
| Transport | stdio |
| Auth | none |
| Endpoint | safedep-vet-mcp |
Use Cases
| 01 | Automatically validate AI-suggested package dependencies against vulnerability databases and malware signatures before adding them to your project |
| 02 | Protect against slopsquatting attacks where AI hallucinated package names could lead to installing malicious typosquat packages |
| 03 | Run real-time supply chain security checks on npm, PyPI, Go, and Maven dependencies directly within Cursor, Claude Code, or VS Code AI workflows |
Tags
security supply-chain slopsquatting vulnerability dependency open-source malware-detection
Machine-readable: /api/servers.json
· JSON-LD schema embedded in <head>