What servers are in the Security Engineer Stack?

The Security Engineer Stack includes 7 servers: Semgrep MCP, SonarQube MCP, Trivy MCP, Shodan MCP, VirusTotal MCP, GitHub MCP, Docker MCP. Total token usage: 37,510.

Is the Security Engineer Stack good for beginners?

The Security Engineer Stack is rated advanced. It is best suited for developers already familiar with MCP servers, API integrations, and complex toolchain configurations.

How do I install the Security Engineer Stack?

Copy the config for your editor (Claude Code, Cursor, VS Code, Windsurf, Claude Desktop, or Continue) from the config generator above. Replace the YOUR_ placeholders with your actual API keys.

Advanced

Security Engineer Stack

Scan code, audit infrastructure, and investigate threats with a comprehensive vulnerability detection and response toolkit.

7 servers37.5K tokens19% of context

Token Budget

37.5K used (18.8%)162.5K remaining

GitHub MCP10.3K (5.1%)

Docker MCP7.2K (3.6%)

SonarQube MCP6.5K (3.3%)

VirusTotal MCP4.0K (2.0%)

Semgrep MCP3.5K (1.8%)

Shodan MCP3.5K (1.8%)

Trivy MCP2.5K (1.3%)

Moderate token usage. You will have good room for prompts but watch if adding more servers.

Config

Paste in ~/.claude.json

json

{
  "mcpServers": {
    "github-mcp": {
      "command": "npx",
      "args": [
        "-y",
        "@modelcontextprotocol/server-github"
      ],
      "env": {
        "GITHUB_PERSONAL_ACCESS_TOKEN": "YOUR_GITHUB_PERSONAL_ACCESS_TOKEN"
      }
    },
    "docker-mcp": {
      "command": "npx",
      "args": [
        "-y",
        "docker-mcp"
      ]
    },
    "sonarqube-mcp": {
      "command": "docker",
      "args": [
        "run",
        "--init",
        "--pull=always",
        "-i",
        "--rm",
        "mcp/sonarqube"
      ],
      "env": {
        "SONARQUBE_TOKEN": "YOUR_SONARQUBE_TOKEN",
        "SONARQUBE_URL": "YOUR_SONARQUBE_URL",
        "SONARQUBE_ORG": "YOUR_SONARQUBE_ORG"
      }
    },
    "virustotal-mcp": {
      "command": "npx",
      "args": [
        "-y",
        "@burtthecoder/mcp-virustotal"
      ],
      "env": {
        "VIRUSTOTAL_API_KEY": "YOUR_VIRUSTOTAL_API_KEY"
      }
    },
    "semgrep-mcp": {
      "command": "uvx",
      "args": [
        "semgrep-mcp"
      ]
    },
    "shodan-mcp": {
      "command": "npx",
      "args": [
        "-y",
        "@burtthecoder/mcp-shodan"
      ],
      "env": {
        "SHODAN_API_KEY": "YOUR_SHODAN_API_KEY"
      }
    },
    "trivy-mcp": {
      "command": "trivy",
      "args": [
        "mcp"
      ]
    }
  }
}

Included Servers

Semgrep MCP

Semgrep

security

Static analysis security scanning with custom rules, AST analysis, and multi-language vulnerability detection. Official Semgrep implementation.

6350/wk3.5K tokens(2%)Official1w ago

Runs static analysis rules to catch security vulnerabilities and dangerous code patterns before they reach production.

SonarQube MCP

SonarSource

security

Code quality analysis, security hotspot detection, and vulnerability tracking from SonarQube Cloud or Server. Official SonarSource implementation.

3900/wk6.5K tokens(3%)Official6d ago

Provides continuous code quality and security scanning with detailed remediation guidance for your development team.

Trivy MCP

Aqua Security

security

Container image scanning, filesystem vulnerability detection, and infrastructure misconfiguration analysis. Official Aqua Security implementation.

380/wk2.5K tokens(1%)Official2w ago

Scans container images and infrastructure configs for known CVEs and misconfigurations in your deployment pipeline.

Shodan MCP

BurtTheCoder

security

Internet-connected device search, IP reconnaissance, CVE lookups, and DNS intelligence via the Shodan API.

1080/wk3.5K tokens(2%)1mo ago

Discovers exposed services and open ports across your external attack surface before adversaries do.

VirusTotal MCP

BurtTheCoder

security

Malware detection, file and URL analysis, IP and domain reputation checks, and threat relationship mapping via the VirusTotal API.

1090/wk4.0K tokens(2%)1mo ago

Analyzes suspicious files, URLs, and hashes against dozens of antivirus engines during incident investigation.

GitHub MCP

Anthropic

developer-tools

Access the GitHub API to manage repositories, issues, pull requests, branches, and workflows directly from your AI editor.

79.2k45.9k/wk10.3K tokens(5%)Officialyesterday

Reviews pull requests for security issues and manages security advisories across your organization's repositories.

Docker MCP

Community

devops

Manage Docker containers, images, volumes, and networks. Run, stop, inspect, and monitor containers from your AI editor.

448161/wk7.2K tokens(4%)1y ago

Audits container configurations and base images to enforce security policies in your build pipeline.

Recommended Skills

Skills that pair with the servers in this stack. Learn more

For GitHub MCP

GitHub CLI Workflowsworkflow

Use gh CLI for all GitHub operations including stacked PR workflows, issue management, and CI/CD automation.

npx skillsadd callstackincubator/agent-skills/github

Fix CI Failuresworkflow

Debug and fix failing GitHub PR checks in GitHub Actions. Automatically diagnoses CI issues and suggests fixes.

npx skillsadd openai/skills/gh-fix-ci

Address PR Commentsworkflow

Address PR review comments using GitHub CLI. Streamlines the code review response workflow.

npx skillsadd openai/skills/gh-address-comments

Code Reviewerrole

Automated code review for TypeScript, JavaScript, Python, Go. Analyzes PRs for complexity, SOLID violations, and code smells.

For Docker MCP

Docker Expertbest-practices

Multi-stage builds, image optimization, container security, Compose orchestration, and production deployment patterns.

npx skillsadd sickn33/antigravity-awesome-skills/docker-expert

Senior DevOps Engineerrole

CI/CD pipelines, infrastructure automation, containerization, and cloud platform expertise. Pairs with Docker MCP for hands-on container management.