DefectDojo
Summary
DefectDojo MCP server provides a bridge to the DefectDojo vulnerability management system, enabling AI assistants to interact with security findings, products, and engagements. Developed by jamiesonio, this implementation offers tools for retrieving, searching, and updating vulnerability data through an asynchronous HTTP client that handles authentication and error management. The server exposes specialized functions for managing security findings (including status updates and note addition), listing products, and handling engagement lifecycle operations. Built with Python 3.12 and the FastMCP framework, it's particularly valuable for security teams who want to integrate vulnerability management workflows into their AI assistant interactions.
Available Actions(11)
get_findings
Retrieve findings with filtering options such as product_name, status, and severity, as well as pagination options like limit and offset.
search_findings
Search findings using a text query, with the ability to apply filtering and pagination.
update_finding_status
Change the status of a specific finding. Parameters include finding_id (integer) and status (string, e.g., Active, Verified, False Positive).
add_finding_note
Add a textual note to a finding. Parameters include finding_id (integer) and note (string).
create_finding
Create a new finding associated with a test. Parameters include title (string), test_id (integer), severity (string), description (string), and cwe (integer).
list_products
List products with filtering options such as name and prod_type, as well as pagination.
list_engagements
List engagements with filtering options like product_id, status, and name, along with pagination.
get_engagement
Get details for a specific engagement by its ID. Parameter: engagement_id (integer).
create_engagement
Create a new engagement for a product. Parameters include product_id (integer), name (string), target_start (string), target_end (string), and status (string).
update_engagement
Modify details of an existing engagement. Parameters include engagement_id (integer), status (string), and description (string).
close_engagement
Mark an engagement as completed. Parameter: engagement_id (integer).
社区评论
暂无评论. 成为第一个评论的人!
登录以参与讨论
