DefectDojo
Summary
DefectDojo MCP server provides a bridge to the DefectDojo vulnerability management system, enabling AI assistants to interact with security findings, products, and engagements. Developed by jamiesonio, this implementation offers tools for retrieving, searching, and updating vulnerability data through an asynchronous HTTP client that handles authentication and error management. The server exposes specialized functions for managing security findings (including status updates and note addition), listing products, and handling engagement lifecycle operations. Built with Python 3.12 and the FastMCP framework, it's particularly valuable for security teams who want to integrate vulnerability management workflows into their AI assistant interactions.
Available Actions(11)
get_findings
Retrieve findings with filtering options such as product_name, status, severity, and pagination parameters like limit and offset.
search_findings
Search findings using a text query, with options for filtering and pagination.
update_finding_status
Change the status of a specific finding, e.g., Active, Verified, False Positive.
add_finding_note
Add a textual note to a finding.
create_finding
Create a new finding associated with a test, requiring parameters such as title, test_id, severity, description, and cwe.
list_products
List products with filtering options such as name and prod_type and pagination parameters.
list_engagements
List engagements with filtering options such as product_id, status, name, and pagination parameters.
get_engagement
Get details for a specific engagement by its ID.
create_engagement
Create a new engagement for a product, requiring parameters like product_id, name, target_start, target_end, and status.
update_engagement
Modify details of an existing engagement.
close_engagement
Mark an engagement as completed.
Recensioni della Community
Nessuna recensione ancora. Sii il primo a recensire!
Accedi per unirti alla conversazione
Highlight AI