{
  "$schema": "https://registry.modelcontextprotocol.io/schemas/server.json",
  "name": "vulnfeed-mcp",
  "description": "Dependency vulnerability monitoring MCP server — scans lockfiles, prioritizes by EPSS exploit probability, recommends fix versions. 9 tools for scanning, monitoring, and alerting. Free tier + paid subscription + x402 micropayments.",
  "homepage": "https://vulnfeed.novadyne.ai",
  "documentation": "https://vulnfeed.novadyne.ai/llms.txt",
  "repository": "https://github.com/novadyne-hq/vulnfeed-mcp",
  "vendor": "Novadyne",
  "packages": [
    {
      "registryType": "pypi",
      "identifier": "vulnfeed-mcp",
      "transport": ["stdio"],
      "runtimeHint": "uvx vulnfeed-mcp"
    }
  ],
  "remote": {
    "transport": "http",
    "url": "https://vulnfeed-api.novadyne.ai",
    "payment": "x402",
    "discovery": "https://vulnfeed-api.novadyne.ai/.well-known/x402"
  },
  "environmentVariables": [
    {
      "name": "VULNFEED_API_KEY",
      "description": "Polar.sh license key for the paid tier (optional — free tier works without it).",
      "required": false
    }
  ],
  "tools": [
    "scan_lockfile",
    "scan_project",
    "check_package",
    "lookup_cve",
    "monitor_project",
    "unmonitor_project",
    "list_monitored",
    "check_alerts",
    "update_deps"
  ]
}
