@pipeworx/osv-dev
Connect: https://gateway.pipeworx.io/osv-dev/mcp · Install: one-click buttons
Tools: 3
OSV.dev MCP — Google’s distributed open-source vulnerability database (Linux distros, npm, PyPI, crates.io, Go, Maven, NuGet, RubyGems, Hex, Pub, Packagist, GitHub Actions, …). Keyless.
Tools
vulnerabilities(package_name?, ecosystem?, version?, commit?)— query vulnerabilities for a package version or git commitquery_batch(queries)— same asvulnerabilitiesbut up to 1000 queries in one callget(vuln_id)— full vulnerability record (e.g.CVE-2022-22965orGHSA-…)
Data source
https://api.osv.dev/v1/
Tools
- vulnerabilities — Query vulnerabilities by package (+ optional version) or git commit.
- query_batch — Batch query (≤1000 queries). Pass an array of {package: {name, ecosystem}, version?} or {commit}.
- get — Full vulnerability record by id (CVE-…, GHSA-…, OSV-…).
Tools
-
get— Full vulnerability record by id (CVE-…, GHSA-…, OSV-…). -
query_batch— Batch query (≤1000 queries). Pass an array of {package: {name, ecosystem}, version?} or {commit}. -
vulnerabilities— Query vulnerabilities by package (+ optional version) or git commit.