Zfuzz

Zfuzz

Real security scanners for AI coding agents — SAST (441 rules), secret detection (419+ patterns), dependency CVEs (OSV.dev), MCP/skill vetting, MITRE ATT&CK. Open-source, Rust, free

Category
访问服务器

README

<div align="center">

Zfuzz — Your AI builds. We scan.

</div>

<div align="center">

npm license node price local

Install · Tools · Agents · When to use · Security · zfuzz.com

</div>

Zfuzz — security for everyone who builds with AI

You ask. Your AI answers with real scanners — not guesses.

Catch SQL injection, leaked API keys, and vulnerable dependencies while you build — no security background required. You don't run tools. You don't read dashboards. You just talk to your AI, and Zfuzz gives it real answers.

$0 · Apache-2.0 · No account · No API key · 100% local · Nothing leaves your machine

Made for vibe coders and developers alike. It plugs straight into the AI tools you already use — Cursor, Claude Code, Codex, Gemini CLI, OpenCode — and the web builders AI Studio, v0, and Lovable.


⚡ Add it in 10 seconds

Pick your tool. Copy one line. Done. No setup wizard, no account, no config to learn.

Cursor — one click

Add to Cursor

Click the button → Cursor opens → press Install. That's your two clicks.

Claude Code

Paste this in the chat and hit enter:

claude mcp add zfuzz -- npx -y @zfuzz/mcp

VS Code (Copilot)

code --add-mcp '{"name":"zfuzz","command":"npx","args":["-y","@zfuzz/mcp"]}'

Codex

codex mcp add zfuzz npx -y @zfuzz/mcp

Gemini CLI

gemini mcp add zfuzz npx -y @zfuzz/mcp

Lovable · v0 · AI Studio — in your browser, no install

Open your tool's MCP / Integrations settings and paste this URL:

https://api.zfuzz.com/mcp

<details> <summary><b>Other tools</b> — OpenCode, Claude Desktop, or a manual config file</summary>

Claude Desktop — Settings → Developer → Edit Config, then add:

{
  "mcpServers": {
    "zfuzz": { "command": "npx", "args": ["-y", "@zfuzz/mcp"] }
  }
}

OpenCode — add to opencode.json:

{
  "mcp": {
    "zfuzz": { "type": "local", "command": ["npx", "-y", "@zfuzz/mcp"] }
  }
}

Self-host the web (HTTP) endpoint instead of using the hosted URL:

npx -y @zfuzz/mcp --transport http --port 8099

Then point your tool at http://localhost:8099/mcp. (Use port 8099, not 8090 — 8090 is the Zfuzz platform's own port.)

</details>

That's it. Keep talking to your AI like normal — the first time your code needs a security check, it calls Zfuzz on its own.


Agent compatibility matrix

Works with every major AI coding agent — and any MCP-compatible client. One line locally, or a hosted URL in the browser. Same 10 tools everywhere.

Agent Zfuzz One-line setup
Claude Code claude mcp add zfuzz -- npx -y @zfuzz/mcp
Cursor one-click button above (or .cursor/mcp.json)
VS Code · Copilot code --add-mcp '{"name":"zfuzz",…}'
Codex codex mcp add zfuzz npx -y @zfuzz/mcp
Gemini CLI gemini mcp add zfuzz npx -y @zfuzz/mcp
Claude Desktop add zfuzz to the MCP config
OpenCode add zfuzz to opencode.json
Lovable · v0 · AI Studio paste the hosted URL https://api.zfuzz.com/mcp
Any other MCP client stdio npx -y @zfuzz/mcp, or the hosted URL in-browser

No per-agent config to learn — the exact copy-paste line for each is under Add it in 10 seconds.


What it feels like

You: Is my login page safe?

AI: [scans your file] Found 2 issues:

  1. SQL injection on line 42 — anyone could read your whole database.
  2. No rate limiting on the login — bots can guess passwords forever. Here's the fix… [writes the patch]

You: Did I leave any passwords or keys in my code?

AI: [scans the project] Yes — your OpenAI key is hard-coded in config.js. Anyone who sees this repo can use it on your bill. Move it to an environment variable — here's how…

You: Are the packages I installed safe?

AI: [checks your dependencies] 2 have known security holes. lodash lets attackers run code on your server. One command fixes both: npm update lodash axios.

You never typed a command, opened a scanner, or read a report. You just asked.


See it in action

<div align="center">

You vibecode an app, it ships with holes, Zfuzz catches them before you ship

You vibecode it. It ships with holes you can't see. Zfuzz catches them all — before you ship, for $0.

</div>


You don't need to understand security

  • You never run a scanner yourself — your AI does, automatically, when it matters.
  • You never read a dashboard — answers come back in plain English, in your chat.
  • You never pay and nothing leaves your computer — no account, no cloud, no API key.

If you can copy-paste one line, you're covered.


What's under the hood

10 real tools your AI can call (it picks the right one — you don't have to):

Tool In plain English
scan_code Finds bugs attackers exploit — 441 rules, 7 languages (Python, JS/TS, Go, Java, Rust, Ruby, PHP).
scan_secrets Catches leaked passwords & API keys — 419 patterns (AWS, GitHub, Stripe, OpenAI, Anthropic…).
scan_dependencies Flags packages with known security holes (CVEs via OSV.dev).
scan_mcp_config Audits the MCP servers you install — hidden instructions, unicode tricks, wildcard permissions, unauthenticated remote servers. Returns a risk score + install verdict.
scan_skill Vets an agent skill (its SKILL.md + bundled scripts) before you install it — hidden instructions, unicode deception, over-broad triggers, wildcard tool grants, and dangerous code or leaked secrets in its scripts.
reconcile_permissions Compares the tools your agents actually use against what they declared — flags capabilities used but never declared, and permissions granted but never used (least privilege, from runtime telemetry).
check_mitre Maps any finding to real-world attack techniques (MITRE ATT&CK).
threat_model Asks "how could this be attacked?" across your whole project (STRIDE + MITRE).
explain_finding Explains any vulnerability — and the fix — in everyday language.
search_security_procedures Looks up 754 security playbooks (incident response, hardening, compliance).

Built in Rust for sub-second answers. The AI brain is your editor's own model (Claude/GPT) — Zfuzz adds the security muscle, not another subscription.

What's inside

441 SAST rules across 7 languages 419 secret-detection patterns
75+ MITRE ATT&CK techniques 754 security playbooks
Rust — sub-second scans 100% local — nothing leaves your machine

What a scan actually returns

You: Is this skill safe to install?

AI: [runs scan_skill]

Verdict: DO NOT INSTALL   (risk 100/100, 6 findings)
 CRIT  ZF-C001   Prompt Injection Pattern Detected         @ description
 MED   ZF-SK001  Overly Broad Skill Trigger                @ description
 HIGH  ZF-LP001  Wildcard Permission Grant (Bash(*), *)    @ allowed-tools
 CRIT  ZF-C002   Pipe-to-Shell Download-Exec (curl | bash) @ setup.sh
 HIGH  ZF-H001   Hardcoded Secret: AWS Access Key ID       @ setup.sh

This skill hides "ignore all previous instructions" in its description, grants itself every tool, and its setup script pipes a remote payload straight into a shell. Don't install it.

Every finding is from a real deterministic scanner — there is no model guessing in the scan path.


Why not Snyk or Semgrep?

Snyk / Semgrep Zfuzz
Where A pipeline, 5–10 min after you push Right in your editor, in seconds
When After the bug shipped While you're writing it
How A dashboard + email alerts A normal conversation with your AI
For non-coders No — built for security teams Yes — built for you
Cost $25–100 / dev / month Free, forever

When to use · When to skip

Great fit if you…

  • Vibecode apps with AI (Lovable, Cursor, v0, Bolt, Claude Code) and want them checked before you ship — without learning security.
  • Want leaked keys, injectable code, and risky dependencies caught right in your editor, in plain English.
  • Want to vet an MCP server or agent skill before you install it.

Skip it if you…

  • Already run a full security team + pipeline and don't want findings in the editor.
  • Work fully offline with no Node.js (the scanner binary is pulled via npx / @zfuzz/cli).
  • Need a hosted dashboard with audit logs and SSO — that's the Zfuzz platform, not the free MCP.

Updating

npx -y @zfuzz/mcp always resolves the latest published version — most people never do anything.

npm view @zfuzz/mcp version      # see the latest release
npm i -g @zfuzz/cli@latest       # only if you pinned the CLI globally

Pinned a version in your MCP config? Bump it (or drop the pin) and restart your agent.


Documentation

Start here Go deeper
User guide — install & first scan What it scans — coverage & approach
Security policy — reporting & local-first design Contributing — dev setup
Add it in 10 seconds — every agent zfuzz.com — the full platform

Free · Open · Local

No API keys. No cloud account. No telemetry. Runs 100% on your machine — your code never leaves it. Apache-2.0 licensed, open source.

Contributing

Issues and PRs welcome — see CONTRIBUTING.md for dev setup. Found a vulnerability? Please follow SECURITY.md — don't open a public issue.


Community & support


License

Apache-2.0 — free & open source. © Zfuzz

Part of the Zfuzz security platform.

推荐服务器

Baidu Map

Baidu Map

百度地图核心API现已全面兼容MCP协议,是国内首家兼容MCP协议的地图服务商。

官方
精选
JavaScript
Playwright MCP Server

Playwright MCP Server

一个模型上下文协议服务器,它使大型语言模型能够通过结构化的可访问性快照与网页进行交互,而无需视觉模型或屏幕截图。

官方
精选
TypeScript
Magic Component Platform (MCP)

Magic Component Platform (MCP)

一个由人工智能驱动的工具,可以从自然语言描述生成现代化的用户界面组件,并与流行的集成开发环境(IDE)集成,从而简化用户界面开发流程。

官方
精选
本地
TypeScript
Audiense Insights MCP Server

Audiense Insights MCP Server

通过模型上下文协议启用与 Audiense Insights 账户的交互,从而促进营销洞察和受众数据的提取和分析,包括人口统计信息、行为和影响者互动。

官方
精选
本地
TypeScript
VeyraX

VeyraX

一个单一的 MCP 工具,连接你所有喜爱的工具:Gmail、日历以及其他 40 多个工具。

官方
精选
本地
graphlit-mcp-server

graphlit-mcp-server

模型上下文协议 (MCP) 服务器实现了 MCP 客户端与 Graphlit 服务之间的集成。 除了网络爬取之外,还可以将任何内容(从 Slack 到 Gmail 再到播客订阅源)导入到 Graphlit 项目中,然后从 MCP 客户端检索相关内容。

官方
精选
TypeScript
Kagi MCP Server

Kagi MCP Server

一个 MCP 服务器,集成了 Kagi 搜索功能和 Claude AI,使 Claude 能够在回答需要最新信息的问题时执行实时网络搜索。

官方
精选
Python
e2b-mcp-server

e2b-mcp-server

使用 MCP 通过 e2b 运行代码。

官方
精选
Neon MCP Server

Neon MCP Server

用于与 Neon 管理 API 和数据库交互的 MCP 服务器

官方
精选
Exa MCP Server

Exa MCP Server

模型上下文协议(MCP)服务器允许像 Claude 这样的 AI 助手使用 Exa AI 搜索 API 进行网络搜索。这种设置允许 AI 模型以安全和受控的方式获取实时的网络信息。

官方
精选