Aikido MCP

The Aikido MCP (Model Context Protocol) Server brings Aikido's security scanning capabilities directly into your AI coding workflow. By connecting Aikido to your AI-powered IDE and other solutions with MCP support, you enable your coding assistant to automatically scan code for security vulnerabilities and hardcoded secrets, right as you write it.

By integrating the Aikido MCP server into their workflow, agents gain the ability to automatically scan any code they generate. This streamlined workflow allows them to detected and resolve any issues directly as they generate it resulting in safer code early in the development process.

Available Tools

• aikido_full_scan: Runs a combined SAST + Secrets scan on provided files.

• aikido_sast_scan: Runs a local SAST (static application security testing) scan on provided files

• aikido_secrets_scan: Runs a secrets-only scan on provided files

Installation

Aikido IDE plugins

When the Aikido IDE plugin is installed you can use the Aikido Expansion Packs to install the Aikido MCP server with one click. Learn more in the Expansion Packs docs.

AI Platforms

Manually

For manual installation details visit the npm package page.

Rules

Aikido IDE plugins will automatically add rules to every repository you open so the LLM's are aware of the MCP and use it during generation. For more information check out the docs below.

Demo

Demo of the Aikio MCP server working with an agent rule to scan and fix vulnerabilities in AI generated code: