home / mcp / leak secure mcp server

Leak Secure MCP Server

Enterprise-grade MCP server that detects secrets in code repositories and provides remediation guidance through a standardized MCP interface.

Installation

Add the following to your MCP client configuration file.

Configuration

View docs

{
  "mcpServers": {
    "cbuntingde-leak-secure-mcp": {
      "url": "https://your-mcp-endpoint.example.com/mcp",
      "headers": {
        "NODE_ENV": "production",
        "LOG_LEVEL": "INFO",
        "MAX_RETRIES": "3",
        "GITHUB_TOKEN": "YOUR_TOKEN_HERE",
        "SCAN_TIMEOUT": "300000",
        "MAX_FILE_SIZE": "10485760",
        "RETRY_DELAY_MAX": "30000",
        "RETRY_DELAY_BASE": "1000",
        "MAX_FILES_PER_SCAN": "10000",
        "GITHUB_REQUEST_TIMEOUT": "30000",
        "CIRCUIT_BREAKER_TIMEOUT": "60000",
        "GITHUB_RATE_LIMIT_BURST": "100",
        "CIRCUIT_BREAKER_THRESHOLD": "5",
        "GITHUB_RATE_LIMIT_PER_HOUR": "5000"
      }
    }
  }
}

Available tools

scan_repository

Scan a GitHub repository for secrets with enterprise-grade reliability features including rate limiting, retry logic, and circuit breaker protection.

scan_code

Scan a code snippet or file content for secrets with enhanced validation and false positive reduction.

analyze_security

Perform comprehensive security analysis on a repository with risk scoring, compliance status, and remediation steps.

get_secret_types

Retrieve a list of all supported secret types with categories and severity levels.

validate_secret

Validate if a detected secret is still active with structured recommendations.