IaC attack-path auditor: finds internet-to-crown-jewel chains in Terraform/CFN/K8s.
Config is the same across clients — only the file and path differ.
{
"mcpServers": {
"cloud-pathfinder": {
"args": [
"-y",
"cloud-pathfinder-mcp"
],
"command": "npx"
}
}
}Are you the author?
Add this badge to your README to show your security score and help users find safe servers.
Attack-path auditor for Infrastructure-as-Code — Terraform, CloudFormation, Kubernetes, CDK, Pulumi, Bicep/ARM. Not a linter. It parses your IaC into a resource graph, resolves cross-resource (and cross-file) relationships, and searches for the multi-hop chains from the public internet to your crown jewels (data stores, secrets, admin). It returns a BREACHABLE / EXPOSED / HARDENED verdict and the concrete route an attacker would walk.
No automated test available for this server. Check the GitHub README for setup instructions.
Five weighted categories — click any category to see the underlying evidence.
No known CVEs.
No package registry to scan.
Be the first to review
Have you used this server?
Share your experience — it helps other developers decide.
Sign in to write a review.
Others in cloud
⚡ A Simple / Speedy / Secure Link Shortener with Analytics, 100% run on Cloudflare.
MCP Server for GCP environment for interacting with various Observability APIs.
MCP server for Hostinger API
Apideck Unified API MCP — 229 tools across 200+ SaaS connectors (accounting, HRIS, file storage).
MCP Security Weekly
Get CVE alerts and security updates for io.github.Baneado98/cloud-pathfinder and similar servers.
Start a conversation
Ask a question, share a tip, or report an issue.
Sign in to join the discussion.
Attack-path auditor for Infrastructure-as-Code — Terraform, CloudFormation, Kubernetes, CDK, Pulumi, Bicep/ARM.
Not a linter. It parses your IaC into a resource graph, resolves cross-resource (and cross-file) relationships, and searches for the multi-hop chains from the public internet to your crown jewels (data stores, secrets, admin). It returns a BREACHABLE / EXPOSED / HARDENED verdict and the concrete route an attacker would walk.
Example chain it finds:
open security group (SSH 0.0.0.0/0) → EC2 instance-profile role → iam:PassRole privilege escalation to admin → S3 exfiltration
Available as an MCP server (Claude, Cursor, any MCP agent) and a pay-per-call x402 API (autonomous AI agents with a wallet).
Sending your IaC to a third party is sensitive — so here is exactly what happens:
files map or source blob).
Nothing is read from your machine, your cloud account, or your credentials —
cloud-pathfinder never touches a live cloud (see "honest limits" below). There
are no cloud keys to provide because it analyzes the declared templates only.deep: true, behind payment). Only then
are the full chains, file:line evidence and remediation returned. You send the
same IaC either way — nothing extra leaves your machine for the deep tier.Hosted service: https://cloud-pathfinder.vercel.app — all analysis runs server-side. This npm package is a thin MCP client: it sends the IaC text to the hosted endpoint and renders the verdict. No analysis logic ships to your machine.
audit_iac_attack_paths { files: { "main.tf": "..." } }.https://cloud-pathfinder.vercel.app.INTERNET node to every data store / secret / admin sink, and resolves IAM
privilege-escalation reachability along each hop — in memory.file:line evidence; the
free tier returns the verdict, score and counts.The npm tarball contains only the HTTP caller — so nothing, free or deep, runs offline. Without the server it degrades to a clear network error.
A linter flags resources one at a time: "this SG is open", "this role is broad". cloud-pathfinder reasons about how those facts connect — work a per-file local tool structurally cannot do:
| Cap