Skip to main content

What You Can Do

Connect your AI coding agent to MindFort and work with your security findings without leaving your editor. Once connected, you can:
  • Browse your targets and findings
  • Read full finding details, evidence, and remediation advice
  • Resolve or archive findings
  • Leave comments and notes on findings
  • Ask your agent to investigate a vulnerability and suggest a fix right in your codebase
  • Have your agent remediate findings by writing patches informed by MindFort’s evidence and remediation advice

Install

Pick your editor and follow the steps below.

Cursor

Install in Cursor Or add to .cursor/mcp.json manually: 
{
  "mcpServers": {
    "MindFort": {
      "url": "https://api.mindfort.app/mcp",
      "transport": "http"
    }
  }
}

Claude Code

Run in your terminal: 
claude mcp add --transport http MindFort https://api.mindfort.app/mcp
Then run /mcp inside Claude Code to sign in. Or add to .mcp.json in your project: 
{
  "mcpServers": {
    "MindFort": {
      "type": "http",
      "url": "https://api.mindfort.app/mcp"
    }
  }
}

Codex

Run in your terminal: 
codex mcp add MindFort --url https://api.mindfort.app/mcp
Or add to ~/.codex/config.toml: 
[mcp_servers.MindFort]
url = "https://api.mindfort.app/mcp"

Other MCP Clients

Any MCP-compatible client can connect using this URL: 
https://api.mindfort.app/mcp

Sign In

MindFort uses your existing MindFort account. No API keys needed.
  1. Add the MindFort MCP server using any method above.
  2. Your agent will prompt you to sign in on first use.
  3. Complete the sign-in in your browser.
  4. You’re connected — the agent handles the rest automatically.

How to Use It

Just talk to your agent naturally. Here are some things you can say:
  • “Show me my MindFort findings” — see your vulnerabilities sorted by severity
  • “What critical vulnerabilities do I have?” — filter to the most urgent issues
  • “Tell me more about that finding” — get full details including evidence and remediation advice
  • “Mark it as resolved” — update the finding status
  • “Add a note: patched in PR #482” — leave a comment attributed to your account
  • “What did MindFort find?” — quick overview of your security posture
  • “Triage my findings” — work through findings one by one
  • “List my targets” — see what applications MindFort is testing
  • “Investigate this finding and fix it” — the agent reads the finding details, locates the vulnerable code, and writes a patch
  • “How would I remediate this vulnerability?” — get a walkthrough based on MindFort’s remediation advice
Comments you add through your agent appear in the MindFort dashboard as if you wrote them directly. They are attributed to your account, not the agent.

Troubleshooting

Make sure the URL is exactly https://api.mindfort.app/mcp and your network allows HTTPS connections. Restart your agent and try again.
Try clearing the MCP connection and adding it again. In Claude Code, run /mcp, select MindFort, and choose re-authenticate. If it still fails, contact support@mindfort.ai.
This is expected. Your agent shows active findings by default. Resolved and archived findings are still visible in the MindFort dashboard under the Secured and Archived tabs.