MCP Hub
Back to servers

Trustify

MCP (Model Context Protocol) Server. Integrates with Trustify supply chain security platforms to query SBOMs and packages, retrieve vulnerability information by CVE ID or PURL, analyze dependencies for security issues, and access advisory data for vulnerability management and compliance tracking.

pulsemcp
AI & MLData & Analytics
Stars
4
Validated
Jan 11, 2026
View Source
Claim this server

mcp

This project provides an implementation of on MCP (Model Context Protocol) server relying upon the official MCP rust-sdk and heavily inspired but the examples that project provides. Both the Stdio and SSE transports are supported.

Env variables

To run the MCP server, both stdio and SSE, some env variables must be provided in order to interact with a Trustify instance:

  • API_URL: the base URL of a Trustify instance
  • OPENID_ISSUER_URL: The URL of the issuer fpr the OpenID provider
  • OPENID_CLIENT_ID: The ID of the client for the OpenID provider
  • OPENID_CLIENT_SECRET: The secret of the client for the OpenID provider

For development purposes, the authentication to the MCP server (not to the remote Trustify APIs) can be disabled running the MCP server with the environment variable AUTH_DISABLED=true.

Stdio

The MCP Clients, e.g. MCP Inspector and Claude Desktop, usually requires the path to the binary of the MCP Server so it's a matter of building the Trustify MCP Server with the stdio transportation in order to consume it from MCP Clients.
To build it, run the command:

cargo build --release --bin stdio

and the built binary for the Trustify MCP Server will be available at the path target/release/stdio.

SSE

To run the MCP Server with the SSE transportation using cargo run, execute

API_URL=<API URL> OPENID_ISSUER_URL=<OpenID Issuer URL> OPENID_CLIENT_ID=<OpenID Client ID> OPENID_CLIENT_SECRET=<OpenID Client secret> cargo run --release --bin sse

and it will be available at the URL http://localhost:8081/sse

Streamable HTTP

To run the MCP Server with the Streamable HTTP transportation using cargo run, execute

API_URL=<API URL> OPENID_ISSUER_URL=<OpenID Issuer URL> OPENID_CLIENT_ID=<OpenID Client ID> OPENID_CLIENT_SECRET=<OpenID Client secret> cargo run --release --bin streamable

and it will be available at the URL http://localhost:8082/mcp

Reviews

No reviews yet

Sign in to write a review