How to Use the Equixly MCP in Claude Code

Q: How do I configure the Equixly MCP server in Claude Code?

Run claude mcp add --transport http equixly -- . Ensure all flags come before the server name. Verify the installation with claude mcp list.

Q: How do I export Equixly findings using Claude Code?

You tell the agent to execute getscanfindings. It can then pipe that JSON output into a file, a ticketing system, or a terminal dashboard.

Q: Does the agent need to upload a spec every time?

No. It can check existing schemas by calling listapispecs. If the current build matches the uploaded version, it skips the upload and goes straight to scanning.

Run autonomous API pentests, audit vulnerabilities, and block insecure deployments straight from your terminal using Claude Code.

See Vinkius in Action

Works with every AI agent you already use

…and any MCP-compatible client

MCP Servers - Free for Subscribers

Connect Equixly MCP to Claude Code

Create your Vinkius account to connect Equixly to Claude Code and route execution through our secure gateway. The platform manages server hosting, runtime updates, and security layers. Configuration requires no manual server provisioning.

GDPR Free for Subscribers

Setup Equixly with Claude Code

Ask AI about this MCP

ChatGPT

Claude

Perplexity

Headless Security Gates with the MCP Server

DevSecOps engineers live in the terminal, and now your security tooling does too. You can script Claude Code to run inside a GitHub Action, automatically calling `create_service` the second a staging environment spins up. Once the target exists, the agent executes `upload_api_spec` using the OpenAPI JSON generated during your build step. This primes the Equixly MCP Server for a highly targeted attack without requiring a single click in a web UI.

Pipeline Pentesting Execution

With the schema loaded, Claude Code fires off `trigger_scan` to hunt for mass assignment and business logic flaws. You can pipe this MCP Server execution into a cron job that runs a daily assault on your production APIs. While the scan runs, the agent polls `get_scan`. It checks the severity breakdown and OWASP mapping, outputting a clean summary of critical and high vulnerabilities directly to your standard output or Slack webhook.

Breaking the Build on Findings

You dictate the failure conditions. Claude Code uses `get_scan_findings` to pull the raw exploitation evidence and actionable remediation steps. If the agent detects a critical BOLA vulnerability on a newly deployed endpoint, it can fail the CI/CD pipeline immediately. Once the run completes, it can execute `delete_service` to wipe the ephemeral target from your registry, leaving zero orphaned configurations behind.

Setup guide

Set up Equixly MCP in Claude Code

Prerequisites

Claude Code CLI installed (npm install -g @anthropic-ai/claude-code)
Active Vinkius subscription with a valid endpoint token

1

Run the add command

Open your terminal and run the command shown on the right. Replace [YOUR_TOKEN_HERE] with your endpoint token from cloud.vinkius.com. Use --scope user to make it available across all projects.
2

Verify the connection

Start a Claude Code session and type /mcp to list connected servers. You should see equixly-mcp with a green status indicator.
3

Start using tools

Ask Claude Code something like "Check my latest Equixly transactions." It will automatically discover and invoke the available Equixly tools.

Terminal

claude mcp add --transport http equixly-mcp https://edge.vinkius.com/[YOUR_TOKEN_HERE]/mcp

Get your connection token →

Prerequisites

Claude Code CLI installed
Active Vinkius subscription with a valid endpoint token

1

Open the config file

Create or edit .mcp.json in your project root for project-level scope, or ~/.claude.json for user-level scope.
2

Add the Equixly MCP

Paste the JSON snippet shown on the right into the mcpServers object. Replace [YOUR_TOKEN_HERE] with your endpoint token from cloud.vinkius.com.
3

Restart Claude Code

Start a new Claude Code session. Type /mcp to confirm the server is connected. The tools will be automatically available in your conversation.

.mcp.json

{
  "mcpServers": {
    "equixly-mcp": {
      "type": "url",
      "url": "https://edge.vinkius.com/[YOUR_TOKEN_HERE]/mcp"
    }
  }
}

Get your connection token →

Independent Platform Disclaimer: Vinkius is an independent platform and is not affiliated with, endorsed by, sponsored by, verified by, or otherwise authorized by Equixly. All third-party trademarks, logos, and brand names are the property of their respective owners. Their use on this website is strictly for informational purposes to identify service compatibility and interoperability.

Why Choose Vinkius

Vinkius connects your tools to AI with real-time monitoring and automatic cost savings — all from one dashboard.

Connect Equixly now

Real-time monitoring

Live

visibility into every interaction

Connect your favorite tools to your AI and see exactly what's happening — every request, every response, in real time.

Built-in savings

60%

lower AI costs

Vinkius compresses data between your apps and your AI automatically. Lower bills every month — no configuration required.

Single dashboard

One

place for every integration

Every tool your AI connects to, managed from a single screen. One account, complete control.

Common questions about Equixly MCP in Claude Code

Run `claude mcp add --transport http equixly -- `. Ensure all flags come before the server name. Verify the installation with `claude mcp list`.

Yes. You can run the agent headlessly in a GitHub Action or Docker container, instructing it to run `trigger_scan` after your deployment step finishes.

You tell the agent to execute `get_scan_findings`. It can then pipe that JSON output into a file, a ticketing system, or a terminal dashboard.

No. It can check existing schemas by calling `list_api_specs`. If the current build matches the uploaded version, it skips the upload and goes straight to scanning.

Your WSDL, HAR, or OpenAPI files are transmitted directly to the pentesting engine to map the attack surface. The resulting vulnerability data and exploitation proofs are passed securely back to your terminal session, ensuring your pipeline secrets remain isolated from unauthorized viewers.

Use it with your favorite AI tools

Connect this server to Cursor, Claude, VS Code, and more.

OpenAI Agents SDK sdk-python

Google ADK sdk-python

Pydantic AI sdk-python

Vercel AI SDK sdk-typescript