Is io.github.juanisidoro/securecode safe to use?

io.github.juanisidoro/securecode has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.

How do I install io.github.juanisidoro/securecode?

io.github.juanisidoro/securecode supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.

What AI clients work with io.github.juanisidoro/securecode?

io.github.juanisidoro/securecode is compatible with claude-desktop, cursor, claude-code. It uses stdio and sse and http transport.

Is io.github.juanisidoro/securecode actively maintained?

io.github.juanisidoro/securecode is recently maintained — last commit was 63 days ago.

io.github.juanisidoro/securecode

@securecode/mcp-server

Secrets vault for Claude Code with audit logs, access rules, and AES-256 encryption.

89/wk 0 tools GitHub npm

No known CVEs

No license

Maintained

Last commit 63d ago

Works with most clients

Transport: stdio, sse, http

0 tools

Grade F

Edit this pageView history

Security Developer Tools

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopstdio, sse, http · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "io-github-juanisidoro-securecode": {
      "args": [
        "-y",
        "@securecode/mcp-server"
      ],
      "command": "npx"
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/io-github-juanisidoro-securecode)](https://mcppedia.org/s/io-github-juanisidoro-securecode)

Read me

What io.github.juanisidoro/securecode does

MCP Server for SecureCodeHQ. Lets Claude Code access your secrets securely without ever seeing them.

Test This Server

Run this in your terminal to verify the server starts. Then let us know if it worked — your result helps other developers.

npx -y '@securecode/mcp-server' 2>&1 | head -1 && echo "✓ Server started successfully"

After testing, let us know if it worked:

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

51/100across 5 weighted dimensions

How we score →

0255075100

−49

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

No known CVEs.

Checked @securecode/mcp-server against OSV.dev.

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is io.github.juanisidoro/securecode safe to use?: io.github.juanisidoro/securecode has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.
How do I install io.github.juanisidoro/securecode?: io.github.juanisidoro/securecode supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.
What AI clients work with io.github.juanisidoro/securecode?: io.github.juanisidoro/securecode is compatible with claude-desktop, cursor, claude-code. It uses stdio and sse and http transport.
Is io.github.juanisidoro/securecode actively maintained?: io.github.juanisidoro/securecode is recently maintained — last commit was 63 days ago.

Similar servers

Others in security / developer-tools

View all →

Supabase MCP Server97

Manage Supabase projects — databases, auth, storage, and edge functions

2.7k 4

XcodeBuildMCP97

XcodeBuildMCP provides tools for Xcode project management, simulator management, and app utilities.

5.7k 1

XcodeBuildMCP97

A Model Context Protocol (MCP) server and CLI that provides tools for agent use when working on iOS and macOS projects.

5.7k 2

Mcp Gitlab96

MCP server for using the GitLab API

1.5k 12

MCP Security Weekly

Get CVE alerts and security updates for io.github.juanisidoro/securecode and similar servers.

Community

Discussion

Start a conversation

Ask a question, share a tip, or report an issue.

Has anyone used this with Cursor?How do you handle auth?Any alternatives?

Edit this pageView history

Security Developer Tools

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopstdio, sse, http · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "io-github-juanisidoro-securecode": {
      "args": [
        "-y",
        "@securecode/mcp-server"
      ],
      "command": "npx"
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/io-github-juanisidoro-securecode)](https://mcppedia.org/s/io-github-juanisidoro-securecode)

Read me

What io.github.juanisidoro/securecode does

MCP Server for SecureCodeHQ. Lets Claude Code access your secrets securely without ever seeing them.

Test This Server

Run this in your terminal to verify the server starts. Then let us know if it worked — your result helps other developers.

npx -y '@securecode/mcp-server' 2>&1 | head -1 && echo "✓ Server started successfully"

After testing, let us know if it worked:

README

@securecode/mcp-server

MCP Server for SecureCodeHQ. Lets Claude Code access your secrets securely without ever seeing them.

Quick Start

claude mcp add securecode -- npx -y @securecode/mcp-server

Then tell Claude Code:

Set up SecureCode in this project

The onboard tool walks you through account creation, secret import, and configuration. Takes about 2 minutes.

What It Does

Your secrets (API keys, tokens, passwords) are encrypted with AES-256 and stored in SecureCode. Claude Code accesses them via MCP, but the actual values never appear in the chat.

When Claude reads a secret, the value is written to a local file on your machine. The AI gets the file path but never sees the raw value. This is inject mode, the default.

Tools

Tool	What it does
`onboard`	Guided setup: signup, import, API key, config, SDK
`get-secret`	Get a secret (injected to file by default, `reveal: true` to show to AI)
`list-secrets`	List all secrets with tags and expiry status
`create-secret`	Create a new secret
`update-secret`	Update value, description, or tags
`delete-secret`	Delete a secret
`renew-secret`	Renew expired secrets or change TTL
`import-env`	Import .env via secure web window (values never pass through AI)
`export-env`	Export secrets as .env or CSV
`get-status`	Check plan, usage, and MCP server version
`wake-session`	Unlock session with optional scope and auto-sleep timer
`sleep-session`	Lock session and clean injected files
`session-status`	Check session state and time remaining
`byebye`	Lock session + clean all secrets from disk
`get-active-rules`	List active MCP access rules (read-only)
`security-check`	Post-setup security hardening checks
`help`	Docs: tools, SDK, sessions, rules, troubleshooting

MCP Access Rules

Control how AI agents access your secrets with tag-based policies. Created from the dashboard, enforced server-side.

Action	Effect
Block Always	Secret only accessible from the dashboard
Require Confirmation	Agent must acknowledge before accessing
Require Session	Requires active session (wake-session)
Block Models	Only allows specific AI models
Notify	Sends email on access (non-blocking)

Session Lock

You: "Wake my session for acme staging"
Claude: Session unlocked. Only acme/staging secrets accessible.

You: "byebye"
Claude: Session locked & secrets cleaned from disk.

Sessions auto-sleep after configurable inactivity (default: 2 hours).

How It Works

Secret values are written to a local file, the AI never sees them (inject mode)
Explicit reveal: true returns value to AI (audited)
Injected files are removed on sleep, byebye, or process exit
Multiple Claude Code instances don't collide (hash based on API key + PID)
Encrypted with AES-256-GCM using envelope encryption (Cloud KMS)
Every access is logged with AI model, IP, machine identity, and timestamp
Runs locally via stdio transport, secrets never pass through third parties
Device approval required on first use from each machine

SDK

The companion SDK lets your app load secrets at runtime:

npm install @securecode/sdk

import { loadEnv } from '@securecode/sdk';
await loadEnv(); // all secrets loaded into process.env

SDK on npm

Requirements

Node.js >= 18
A SecureCodeHQ account (free tier: 50 secrets, 10K accesses/month)

License

MIT

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

51/100across 5 weighted dimensions

How we score →

0255075100

−49

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

No known CVEs.

Checked @securecode/mcp-server against OSV.dev.

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is io.github.juanisidoro/securecode safe to use?: io.github.juanisidoro/securecode has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.
How do I install io.github.juanisidoro/securecode?: io.github.juanisidoro/securecode supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.
What AI clients work with io.github.juanisidoro/securecode?: io.github.juanisidoro/securecode is compatible with claude-desktop, cursor, claude-code. It uses stdio and sse and http transport.
Is io.github.juanisidoro/securecode actively maintained?: io.github.juanisidoro/securecode is recently maintained — last commit was 63 days ago.

Similar servers

Others in security / developer-tools

View all →

Supabase MCP Server97

Manage Supabase projects — databases, auth, storage, and edge functions

2.7k 4

XcodeBuildMCP97

XcodeBuildMCP provides tools for Xcode project management, simulator management, and app utilities.

5.7k 1

XcodeBuildMCP97

A Model Context Protocol (MCP) server and CLI that provides tools for agent use when working on iOS and macOS projects.

5.7k 2

Mcp Gitlab96

MCP server for using the GitLab API

1.5k 12

MCP Security Weekly

Get CVE alerts and security updates for io.github.juanisidoro/securecode and similar servers.

Community

Discussion

Start a conversation

Ask a question, share a tip, or report an issue.

Has anyone used this with Cursor?How do you handle auth?Any alternatives?

io.github.juanisidoro/securecode

Install in your client

What io.github.juanisidoro/securecode does

Test This Server

Why this score

51/100across 5 weighted dimensions

Security

Reviews

Frequently Asked Questions

Similar servers

Discussion

io.github.juanisidoro/securecode

Install in your client

What io.github.juanisidoro/securecode does

Test This Server

@securecode/mcp-server

Quick Start

What It Does

Tools

MCP Access Rules

Session Lock

How It Works

SDK

Links

Requirements

License

Why this score

51/100across 5 weighted dimensions

Security

Reviews

Frequently Asked Questions

Similar servers

Discussion

@securecode/mcp-server

Quick Start

What It Does

Tools

MCP Access Rules

Session Lock

How It Works

SDK

Links

Requirements

License