The first MCP server for cybersecurity
Claim it to get a verified publisher badge, a free copy of our full audit findings, and direct contact for any high-priority issues we find.
Install from
M8ven verifies MCPs across every public registry — install directly from whichever one you prefer.
process.env. You'll be asked to provide them before it can run.MCP_HTTP_HOSTMCP_HTTP_PORTMCP_AUDIT_LOG_PATH— export =/var/lib/illumio-mcp/audit.dbMCP_KEYSTORE_PATH— export =/var/lib/illumio-mcp/keys.db # default: ./data/keys.dbMCP_OAUTH_ISSUER— export =https://login.microsoftonline.com/<tenant-id>/v2.0MCP_OAUTH_JWKS_URL— export =https://login.microsoftonline.com/<tenant-id>/discovery/v2.0/keysMCP_OAUTH_AUDIENCE— export =https://mcp.illumio.exampleMCP_OAUTH_REQUIRED_SCOPE— export =illumio-mcp.use # default; override if neededMCP_PUBLIC_URL— export =https://mcp.illumio.exampleMCP_DEV_INSECURE— The server refuses to start without these env vars (unless =1).MCP_CONFIRM_HMAC_KEY— export =$(python -c 'import os, base64; print(base64.b64encode(os.urandom(32)).decode())')MCP_CONFIRM_TTL_SECONDS— export =120MCP_CONFIRM_JTI_PATH— export =/var/lib/illumio-mcp/jti.dbMCP_KEK— error, and is not required. SSO + JWT + role-based authz + auditMCP_PCE_MODE— Mode PCE creds Onboarding PCE-side auditMCP_ROLE_DEFAULT— export =readerMCP_ROLE_GROUPS_ADMIN— export =sg-illumio-mcp-adminMCP_ROLE_GROUPS_OPERATOR— export =sg-illumio-mcp-operator,sg-illumio-mcp-adminMCP_ROLE_GROUPS_READER— export =sg-illumio-mcp-readonly,sg-illumio-mcp-operator,sg-illumio-mcp-adminPCE_HOST— "": "your-pce-host",PCE_PORT— "": "your-pce-port",PCE_ORG_IDAPI_KEY— "": "api_key",API_SECRET— "": "api_secret"PCE_TLS_VERIFYDOCKER_CONTAINERMCP_CONFIRM_FRESH_AUTH_SECONDS— export =300 # require JWT auth_time within 5 min[](https://m8ven.ai/mcp/alexgoller-illumio-mcp-server-iywgt6)