home / mcp / apiiro guardian mcp server

Apiiro Guardian MCP Server

Provides real-time security insights and actions from Apiiro through MCP for AI coding assistants.

Installation

Add the following to your MCP client configuration file.

Configuration

{
  "mcpServers": {
    "apiiro-mcp-server": {
      "url": "https://mcp.apiiro.com/mcp",
      "headers": {
        "APIIRO_API_TOKEN": "Bearer token for API access to Apiiro MCP server"
      }
    }
  }
}

You can connect your AI coding environment to Apiiro Guardian through the MCP to access real-time security insights, perform security analyses, trigger scans, and manage findings directly from your development workflow. This MCP server exposes Apiiro’s security capabilities to supported AI assistants, enabling you to write secure code with guided security feedback and rapid risk queries across your repositories.

How to use

You will use an MCP client in your AI assistant to interact with Apiiro Guardian MCP Server. Start by selecting the Apiiro MCP server configuration, then invoke available tools to perform security tasks. Typical workflows include querying security risks across repositories, triggering differential scans on code changes, analyzing repository security posture, and addressing findings. Each tool is designed to provide actionable guidance within your coding session, helping you write secure code as you work.

How to install

Prerequisites you need before running the MCP server locally or connecting to it from your MCP client.

# Prerequisites
- Install Node.js (LTS version) and npm
- Have access to an Apiiro account with API access if you plan to use the remote MCP server

# Clone the MCP server repository
- git clone <repository-url>
- cd mcp-server

# Install dependencies
- npm install

# Build the project if a build step exists
- npm run build

# Start the MCP server (adjust to the actual start command if different)
- npm run start

Additional notes

Configuration and security details are provided to guide you in connecting your MCP client to Apiiro Guardian. You will typically configure the server endpoint and any required authentication tokens in your MCP client. The primary server endpoint for this MCP server is the Apiiro MCP URL, and authentication may be performed using an OAuth flow or a bearer token provided via the API token environment variable.

Configuration and security

Connection details for the Apiiro Guardian MCP Server are provided as an HTTP MCP entry. Use the following configuration to connect your MCP client.

Troubleshooting

If you encounter authentication errors, verify that your API token (APIIRO_API_TOKEN) is correctly set in your MCP client environment. Ensure the server URL is reachable and that your MCP client is configured to use the HTTP MCP server type.

Notes

This MCP server exposes Apiiro’s security capabilities for real-time guidance, risk querying, scans, and findings remediation within your development workflow.

Available tools

write_secure_code

Provide real-time security guidance and embed secure coding practices into your prompts and outputs.

query_risks

Query security risks across repositories to surface potential issues during development.

trigger_diffs

Trigger differential scans on code changes to compare new changes against baseline security posture.

analyze_repo

Analyze repository security posture to identify configuration weaknesses and exposure risks.

manage_findings

Manage and remediate security findings directly from your assistant workflow.

aspm_analysis

Perform Application Security Posture Management analysis to assess ASPM maturity and coverage.