Mobb
Created 4 months ago
Bugsy is a CLI tool for automatic security vulnerability remediation.
What is Mobb?
The [Mobb Vibe Shield](https://vibe.mobb.ai/) MCP server identifies and remediates vulnerabilities in both human and AI-written code, ensuring your applications remain secure without slowing development.
Documentation
Bugsy
Overview
Bugsy is a command-line interface (CLI) tool that provides automatic security vulnerability remediation for your code. It is the community edition version of Mobb, the first vendor-agnostic automated security vulnerability remediation tool.
Features
- Scan: Uses Checkmarx or Snyk CLI tools to run a SAST scan on a given open-source GitHub/GitLab/ADO repo.
- Analyze: Analyzes a Checkmarx/CodeQL/Fortify/Snyk vulnerability report to identify issues that can be remediated automatically.
Usage
Run Bugsy from the command line using npx mobbdev. For detailed usage, refer to the command help.
MCP Server
Bugsy can also be used as an MCP server, allowing AI assistants to automatically scan and fix vulnerabilities in your code repositories.
Prerequisites
- API Key: You need a Mobb API key to use the MCP server functionality.
- Local Git Repository: The MCP server analyzes git repositories with uncommitted changes.
Installation
Run npx mobbdev mcp to start the MCP server.
Configuration
Add Mobb MCP to your Cursor MCP client configuration.
Example MCP Workflow
- Make changes to your code.
- Stage or modify files in git.
- Ask your AI assistant to check your code for security vulnerabilities.
- Receive detailed fix recommendations with code patches.
Server Config
{
"mcpServers": {
"mobb-server": {
"command": "npx",
"args": [
"mobb"
]
}
}
}