Command Palette

Search for a command to run...

UnylyUnyly
Весь каталог

Helios

БесплатноНе проверен

MCP server that securely reviews AI-generated code for vulnerabilities such as SQL injection, command injection, and hardcoded credentials.

GitHubEmbed

Описание

MCP server that securely reviews AI-generated code for vulnerabilities such as SQL injection, command injection, and hardcoded credentials.

README

logo

Helios

languages license stars

中文 | English

🌞 Divine Light, Guardian of AI Code Realm

What is Helios

Helios is derived from the ancient Greek "Ἥλιος", the name of the sun god. In Greek mythology, the sun god drives a golden chariot pulled by four fire horses across the sky, representing light, energy, and guidance.

Helios symbolizes providing light and direction like the sun during developers' AI editor programming process, protecting program security, preventing potential security threats, and generating more secure code.

Features

Usage

Environment Setup

  • Python: 3.12 or higher

Install uv (if not already installed) for project management and dependency synchronization:

# Install
curl -LsSf https://astral.sh/uv/install.sh | sh

# Update
uv self update 

# Sync dependencies
uv sync

Running

Start the MCP server:

uv run -m helios.helios  

First you need a BAILIAN_API_KEY from https://bailian.console.aliyun.com

export BAILIAN_API_KEY=xxxxxx

Then Configure the server in MCP-compatible clients:

{
  "mcpServers": {
    "sec-server": {
      "url": "http://127.0.0.1:8000/mcp"
    }
  }
}

To ensure MCP tools are called properly, please add config/project_rules.md to your editor's project rules.

Or add the following to your input prompts:

After writing files or generating files, you must call the MCP tool query_guide_line to query the best file security writing guidelines, then check and correct files according to the guidelines.

Supported Security Checks

  • SQL Injection Detection: Identifies unsafe SQL query construction
  • Command Injection Detection: Detects unsafe command execution
  • File Operation Security Detection: Identifies path traversal and file permission issues
  • Network Request Security Detection: Detects unsafe network communication
  • Hardcoded Credentials Detection: Identifies hardcoded passwords and API keys
  • Weak Encryption Algorithm Detection: Detects use of insecure encryption algorithms
  • Sensitive Data Leakage Detection: Identifies sensitive information leakage in logs
  • ...

Demo

demo

from github.com/alibaba/Helios

Установка Helios

У этого сервера нет опубликованного пакета — он собирается из исходников. Открой репозиторий и следуй инструкции в README.

▸ github.com/alibaba/Helios

FAQ

Helios MCP бесплатный?

Да, Helios MCP бесплатный — установка в пару кликов через Unyly без оплаты.

Нужен ли API-ключ для Helios?

Нет, Helios работает без API-ключей и переменных окружения.

Helios — hosted или self-hosted?

Self-hosted: сервер запускается локально на твоей машине командой из раздела установки.

Как установить Helios в Claude Desktop, Claude Code или Cursor?

Открой Helios на unyly.org, выбери вкладку своего клиента (Claude Desktop, Claude Code, Cursor) и нажми Install — конфиг сгенерируется автоматически, без правки JSON.

Похожие MCP

Compare Helios with

Не уверен что выбрать?

Найди свой стек за 60 секунд

Автор?

Embed-бейдж для README

Похожее

Все в категории data