AgentReadyHomeAgent ListingPricing

← Agent Listing

Cycode MCP

MCP Tools and AgentsFreemiumFreemium

MCP command in the Cycode CLI providing SAST, SCA, secrets, and IaC scanning for the dev lifecycle.

🛡️ AgentReady threat assessment

MAESTRO 7-layer threat model + OWASP AIVSS risk score for Cycode MCP, derived from its capabilities.

AIVSS 8.2 · High
View MAESTRO 7-layer threat model →

These scores are auto-generated from public information (the agent's own listing, docs, and repository) using the canonical OWASP AIVSS formula and the MAESTRO framework — an estimate for guidance, not a penetration test, audit, or certification. See the scoring methodology. Are you the vendor? Factual corrections are free.

Overview

Cycode's CLI exposes an MCP command that brings its complete application security scanning suite - static analysis, software composition analysis, hardcoded secret detection, and infrastructure-as-code scanning - to AI agents. Agents can invoke scans and receive prioritized findings. It touches source, dependency manifests, and IaC files, giving it broad read surface.

Key features

Use cases