Back to MCP Trust Indexm8ven
69
/ 100
13 days ago
glama

GitGuardian MCP Server

Enables AI agents to scan projects for secrets, manage incidents, and create honeytokens using GitGuardian's API.

fastmcp-me/ggmcp· listed on glama
Is this your MCP?

Claim it to get a verified publisher badge, a free copy of our full audit findings, and direct contact for any high-priority issues we find.

Install from

Glama

M8ven verifies MCPs across every public registry — install directly from whichever one you prefer.

// key findings
No credential exfiltration, no sensitive file access, no obfuscation
Static analysis found nothing flowing your secrets to unexpected places.
Open source with a license and README
Anyone can audit the code, the license is declared, and the publisher documents what it does.
🔐
You'll be asked for 1 credential: GITGUARDIAN_PERSONAL_ACCESS_TOKEN
These are read from process.env at runtime. Make sure you trust where they’ll be sent.
// required environment variables
This server reads these from process.env. You'll be asked to provide them before it can run.
configMCP_PORTWhen using HTTP/SSE transport (with set), the server expects authentication via the Authorization header in each HTTP request. This is the recommended approach for server deployments.
configMCP_HOSTENABLE_LOCAL_OAUTH=false MCP_PORT=8000 =127.0.0.1 uvx --from git+https://github.com/GitGuardian/ggmcp.git developer-mcp-server
configENABLE_LOCAL_OAUTH1. OAuth is enabled by default (=true) for local-first usage
🔐 secretGITGUARDIAN_PERSONAL_ACCESS_TOKEN"": "your_pat_here"
configGITGUARDIAN_URLGitGuardian instance URL https://dashboard.gitguardian.com https://dashboard.eu1.gitguardian.com
configGITGUARDIAN_LOGIN_PATH
configGITGUARDIAN_TOKEN_NAMEName for the OAuth token Auto-generated based on server type "Developer MCP Token"
configXDG_CONFIG_HOME
configGITGUARDIAN_TOKEN_LIFETIMEToken lifetime in days 30 60 or never
configGITGUARDIAN_USE_DASHBOARD_AUTHENTICATED_PAGE
configGITGUARDIAN_CLIENT_IDOAuth client ID ggshield_oauth my-custom-oauth-client
configGITGUARDIAN_SCOPESOAuth scopes to request Auto-detected based on instance type scan,incidents:read,sources:read,honeytokens:read,honeytokens:write
configGITGUARDIAN_REQUESTED_SCOPES
configSENTRY_DSN
configSENTRY_ENVIRONMENT
configSENTRY_RELEASE
configSENTRY_TRACES_SAMPLE_RATE
configSENTRY_PROFILES_SAMPLE_RATE
configMULTI_TENANCY_ENABLED
// full audit trail
The full breakdown of what we checked, the deductions that landed, the network hosts, the dependency advisories, and concrete fix guidance is available to verified publishers.
// improvement guidance — verified publishers only
We have 5 concrete improvements we can share with the publisher of this MCP. Each comes with specific guidance to raise the trust score.
// embed badge in your README
[![M8ven Score](https://m8ven.ai/badge/mcp/fastmcp-me-ggmcp-ktdjwb)](https://m8ven.ai/mcp/fastmcp-me-ggmcp-ktdjwb)
commit: 69889780d086c53329a0cf33808ce338b0bb2b19
code hash: a8d4c90fec29c24576b37f4c07936addbf6565eda904353c3101abd8ce708839
verified: 6/15/2026, 3:11:25 PM
view raw JSON →