cyberlens-mcp-server

> Security scanning for AI assistants and agentic coding workflows.

[](https://modelcontextprotocol.io) [](https://openclaw.ai) [](LICENSE) [](https://nodejs.org)

A Model Context Protocol (MCP) server that gives AI assistants the ability to scan websites, public repositories, and Open CLAW skills for security vulnerabilities. It's purpose-built for the agentic coding era, with native support for scanning skill packages before you install them.

---

When connected to an AI assistant (Claude Desktop, VS Code, etc.), this MCP server adds security scanning tools that the assistant can use during your conversation:

• Scan a CLAW skill before installing it -- the server downloads the skill package, extracts it, and analyses the actual source code for dangerous patterns, hardcoded secrets, and permission issues
• Scan a website in a local quick mode without an account, or use the full cloud scan when connected
• Scan a public repository for exposed secrets, dependency vulnerabilities, suspicious code patterns, and trust posture issues
• Check your remaining cloud scan quota before kicking off a batch of scans
• Get remediation guidance with step-by-step fix instructions and code examples

You:    "I want to install this skill: https://clawhub.ai/skills/ontology"

Claude: I'll scan it for security issues first.

        [PASS] CLAW Skill Security Scan: ontology v1.0.4

        Security Score: 95/100
        Files Analyzed: 5

        Skill appears safe to install. Minor issues noted below.

        1. [MEDIUM] File write operation
           File: scripts/ont