MCP Server

Integrate Endor Labs into your IDE for real-time AI-generated code scanning.
Beta

MCP (Model Context Protocol) is an open standard that defines a consistent way for applications to share relevant context and information with Large Language Models (LLMs). MCP servers expose specific capabilities through the standardized Model Context Protocol. For more information on MCP, refer to the MCP documentation.

The Endor Labs MCP server integrates seamlessly into your development workflow, scanning your code as you write. You can catch issues long before they’re a problem in production. It plugs directly into your IDE, tightening the feedback loop for both human and AI-generated code. Thus, you can quickly secure your code from the start. With Endor Labs, you’re bringing security all the way left, getting real-time, proactive insights and automated fixes in your editor, while you build, minimizing last-minute security scrambles.

The Endor Labs MCP server runs locally on your machine as a lightweight process. Your IDE or CLI launches it automatically and communicates with it over stdio. When the AI agent needs security context, it calls the tools exposed by the server.

The Endor Labs MCP server helps developers and AI agents in the following ways:

  • Provide guardrails for agents before code review: Reduce the number of known vulnerabilities entering your code and save developers time by checking AI agent suggestions in real time. Integrate security before an issue is discovered in CI or in production.
  • Improve the speed of remediating security risks: Agents use vulnerability context from Endor Labs to help implement secure changes, from writing more secure code to upgrading dependencies.

The Endor Labs MCP server provides the following tools:

  • check_dependency_for_vulnerabilities: Check if a dependency in your project is vulnerable.
  • check_dependency_for_risks: Check a dependency for security risks including vulnerabilities and malware.
  • get_endor_vulnerability: Get the details of a specific vulnerability from the Endor Labs vulnerability database.
  • get_resource: Retrieve additional context from commonly used Endor Labs resources about your software, such as findings, vulnerabilities, and projects.
  • scan: Run an Endor Labs security scan to detect risks in your open source dependencies, find common security issues, and spot any credentials accidentally exposed in your Git repository.
  • security_review: Perform security review analysis on code diffs. Analyzes local uncommitted changes (both staged and unstaged) compared to HEAD, or diffs between the main branch and the last commit. Requires the Enterprise Edition. You must specify your namespace in the MCP server configuration. You must also enable AI security code review for your namespace in the Endor Labs platform. See AI security code review for setup instructions.

After you set up the MCP server, you can choose to disable the tools that you do not want to use.

Cursor

Configure the Endor Labs MCP server in Cursor for AI-powered development workflows.

Claude Code

Integrate the Endor Labs MCP server with Claude Code for AI-powered development workflows.

OpenAI Codex

Configure the Endor Labs MCP server in OpenAI Codex for AI-powered development workflows.

Visual Studio Code

Configure the Endor Labs MCP server in Visual Studio Code with GitHub Copilot for AI-powered development workflows.

Devin

Configure the Endor Labs MCP server in Devin through the MCP Marketplace.

Gemini CLI

Configure the Endor Labs MCP server in Gemini CLI for AI-powered development workflows.

Augment Code

Configure the Endor Labs MCP server in Augment Code for AI-powered development workflows.

IntelliJ IDEA

Configure the Endor Labs MCP server in IntelliJ IDEA with GitHub Copilot for AI-powered development workflows.