// docs / mcp

MCP server ማጣቀሻ

FixVibeን ወደ Claude Desktop፣ Cursor፣ ወይም Model Context Protocol የሚናገር ማንኛውም client plug ያድርጉ። AI agentዎ ወደ scansዎ፣ findingsዎ፣ እና የdashboard Copy fix prompt buttonን የሚያንቀሳቅሱትን templated fix prompt-ዎች ተመሳሳይ typed access ያገኛል።

API token mint ያድርጉ

/account/api-tokens ይጎብኙ እና ለምሳሌ claude-desktop የሚባል token create ያድርጉ። Plaintext value ይቅዱ — አንድ ጊዜ ይታያል።

Token-ዎች bearer credential ናቸው: stringውን ያለው ማንኛውም ሰው scansዎን ማንበብ እና አዲስ scan መጀመር ይችላል። እንደ password ያከማቹት።

MCP clientዎን ወደ /api/mcp ያመልክቱ

Claude Desktop / Cursor / Continue / Zed:

{
  "mcpServers": {
    "fixvibe": {
      "transport": "streamable-http",
      "url": "https://fixvibe.app/api/mcp",
      "headers": {
        "Authorization": "Bearer fxv_YOUR_TOKEN_HERE"
      }
    }
  }
}

Clientን restart ያድርጉ። fixvibe server በMCP server list ውስጥ መታየት አለበት።

ይሞክሩት

Agentዎን እንዲህ ያሉ ነገሮች ይጠይቁ:

“የመጨረሻዎቹን 10 FixVibe scans ዘርዝርልኝ።”
“በቅርቡ በተደረገው scan ላይ critical findings አሳየኝ።”
“በhttps://staging.example.com ላይ passive scan ጀምር።”
“በscan X ላይ ለእያንዳንዱ high-severity finding fix ጻፍ።”
“በdomain-ዎቼ ላይ open live-threat alert አለ?”
Templated remediation promptን በቀጥታ chat ውስጥ drop ለማድረግ finding id ጋር /fixvibe-fix type ያድርጉ።

Tool-ዎች

list_scansንባብ: Status + finding count ጋር እስከ 100 በጣም recent scans ይመልሳል። Args: limit?: 1..100።
get_scanንባብ: በdefault scan envelope + per-category severity summary። Full report ለማግኘት include_findings=true set ያድርጉ (ለnoisy scan ትልቅ ነው — list_findings + filter መጠቀም ይመረጣል)። Args: scan_id (uuid), include_findings?: boolean።
list_findingsንባብ: በscansዎ ሁሉ ላይ paginated findings። Args: severity?: list, check_id?, since? (ISO 8601), limit?: 1..200።
start_scanጽሁፍ: Enqueues a scan and returns an id with status queued; poll get_scan to await completion. Passive mode is always available through MCP. Active mode requires a paid plan plus verified-domain authorization from the dashboard. Args: target (URL or hostname), mode? (passive|active).
list_alertsንባብ: የቀጥታ ስጋት ማሳወቂያዎች (የCT log ልዩነቶች፣ የDNS ለውጦች፣ የthreat intel ዝርዝሮች)። በUnlimited ዕቅድ ላይ ብቻ ይገኛል፤ የHobby እና Pro ዕቅዶች ባዶ ዝርዝር ይመልሳሉ። Args: domain_id?, active_only?, limit?: 1..200.
get_alertንባብ: Single alert with the relevant domain, severity, type, and event details. Args: alert_id (uuid).
dismiss_alertጽሁፍ · idempotent: Alertን dismissed mark ያደርጋል። Idempotent — እንደገና dismiss ማድረግ no-op ነው። Args: alert_id (uuid)።

Resource-ዎች

Resource-ዎች agent በእያንዳንዱ turn እንደገና fetch ከማድረግ ይልቅ clientዎ FixVibe dataን በቀጥታ ወደ conversation attach እንዲያደርግ ያስችላሉ። በClaude Desktop፣ @ menu → fixvibe ይጫኑ።

fixvibe://scan/{scan_id}/reportjson: እያንዳንዱ check እና እያንዳንዱ finding ያለው full FixVibe scan report።
fixvibe://finding/{finding_id}json: አንድ finding (severity፣ title፣ description፣ evidence፣ remediation፣ CWE)።

Slash command-ዎች

/fixvibe-fixprompt: Renders a server-side remediation prompt for a finding, using scan context when available and falling back to generic guidance otherwise. Args: finding_id (uuid). No third-party LLM API call is made by FixVibe.

→ Quota፣ RLS፣ እና severity gating በMCP እና REST call-ዎች ላይ ተመሳሳይ ይተገበራሉ።