How to Use the FOSSA (License Compliance) MCP in Claude

Q: How do I configure FOSSA (License Compliance) with Claude Desktop?

Open your claudedesktopconfig.json file and add the FOSSA MCP Server to your mcpServers object with your API key environment variable. Restart your Claude Desktop app, and you will see the new tools available via the hammer icon in your chat window.

Q: How does Claude Desktop handle dependency scanning with FOSSA (License Compliance)?

The desktop app uses getrevisiondependencies to pull the complete list of packages for a specific revision. Claude Desktop then parses this list locally, allowing you to ask questions about license conflicts or out-of-date packages.

Audit open-source licensing and vulnerabilities directly inside Claude Desktop with the FOSSA MCP Server.

See Vinkius in Action

Works with every AI agent you already use

…and any MCP-compatible client

MCP Servers - Free for Subscribers

Connect FOSSA (License Compliance) MCP to Claude Desktop

Create your Vinkius account to connect FOSSA (License Compliance) to Claude Desktop and route execution through our secure gateway. The platform manages server hosting, runtime updates, and security layers. Configuration requires no manual server provisioning.

GDPR Free for Subscribers

Setup FOSSA (License Compliance) with Claude Desktop

Ask AI about this MCP

ChatGPT

Claude

Perplexity

Scan Project Revisions inside Claude Desktop

The FOSSA (License Compliance) MCP Server uses `list_projects` and `list_revisions` to pull your organization's active codebases directly into your local chat interface. Your local desktop client reads these endpoints to map out exactly which code versions are currently being analyzed for legal risks. You can then ask Claude Desktop to drill down into a specific build using `get_revision`. The client cross-references this revision data against your local workspace to flag uncommitted changes that might violate your team's compliance rules.

Trace Dependency Chains in Chat

The `get_revision_dependencies` tool extracts the full tree of direct and transitive packages for any specified project build. This allows Claude Desktop to parse your dependency graph and identify deep-nested legal liabilities without requiring you to open a browser. If a questionable package shows up, the client calls `get_parent_projects` to pinpoint every internal repository that imports it. You get a clear map of your exposure across your entire software portfolio in seconds.

Check Vulnerabilities via Claude Desktop

The `check_vulnerabilities` tool queries the database using dependency locators to find active security threats in your current codebase. Claude Desktop processes this raw JSON payload to highlight critical CVEs directly in your conversation history. Because this MCP Server runs locally via your desktop config, your API tokens remain stored safely on your machine. You get instant security feedback on your dependencies before you push your code to production.

Setup guide

Set up FOSSA (License Compliance) MCP in Claude Web or Desktop

1

Open Claude Settings

Go to claude.ai, click your profile icon, then navigate to Customize → Connectors.
2

Add Custom Connector

Click the "+" button and select Add custom connector. Paste your Vinkius endpoint URL: https://edge.vinkius.com/[YOUR_TOKEN_HERE]/mcp Replace [YOUR_TOKEN_HERE] with your token from cloud.vinkius.com. For OAuth-protected servers, expand Advanced settings to add credentials.
3

Start a conversation

Open a new chat. The FOSSA (License Compliance) MCP tools are available immediately — no restart needed.

Endpoint URL

https://edge.vinkius.com/[YOUR_TOKEN_HERE]/mcp

No configuration file needed — paste the URL directly in the Claude web interface.

Available on Free (1 connector), Pro, Max, Team, and Enterprise plans.

Prerequisites

Claude Desktop installed (macOS or Windows)
Active Vinkius subscription with a valid endpoint token

1

Open Claude Desktop Settings

Click the menu icon at the top-left corner, go to Settings → Developer → Edit Config. This opens claude_desktop_config.json in your default text editor.
2

Paste the FOSSA (License Compliance) MCP configuration

Copy the JSON snippet on the right into the mcpServers object. Replace [YOUR_TOKEN_HERE] with your endpoint token from cloud.vinkius.com.
3

Restart Claude Desktop

Close and reopen the application. Claude needs a full restart to load new MCPs — refreshing a conversation is not enough.
4

Verify the connection

Open a new conversation. Click the 🔌 icon at the bottom of the message input. You should see tools listed under fossa-license-compliance-mcp.

json

{
  "mcpServers": {
    "fossa-license-compliance-mcp": {
      "url": "https://edge.vinkius.com/[YOUR_TOKEN_HERE]/mcp"
    }
  }
}

Get your connection token →

Independent Platform Disclaimer: Vinkius is an independent platform and is not affiliated with, endorsed by, sponsored by, verified by, or otherwise authorized by FOSSA. All third-party trademarks, logos, and brand names are the property of their respective owners. Their use on this website is strictly for informational purposes to identify service compatibility and interoperability.

Why Choose Vinkius

Vinkius connects your tools to AI with real-time monitoring and automatic cost savings — all from one dashboard.

Connect FOSSA (License Compliance) now

Real-time monitoring

Live

visibility into every interaction

Connect your favorite tools to your AI and see exactly what's happening — every request, every response, in real time.

Built-in savings

60%

lower AI costs

Vinkius compresses data between your apps and your AI automatically. Lower bills every month — no configuration required.

Single dashboard

One

place for every integration

Every tool your AI connects to, managed from a single screen. One account, complete control.

Common questions about FOSSA (License Compliance) MCP in Claude Desktop

Open your `claude_desktop_config.json` file and add the FOSSA MCP Server to your `mcpServers` object with your API key environment variable. Restart your Claude Desktop app, and you will see the new tools available via the hammer icon in your chat window.

Yes, you can connect this MCP Server to the web version of Claude by adding it as a custom connector in your integration settings. You will need to host the server on a publicly reachable HTTPS URL so the browser client can access the tools.

The desktop app uses `get_revision_dependencies` to pull the complete list of packages for a specific revision. Claude Desktop then parses this list locally, allowing you to ask questions about license conflicts or out-of-date packages.

No, this server only reads data and does not modify your CI/CD pipelines. It gives your desktop client the ability to query status, leaving the actual build enforcement to your existing pipeline configurations.

Your FOSSA API key and dependency locators are stored locally in your desktop configuration file and never pass through third-party servers. The MCP Server acts as a local proxy, communicating directly with the FOSSA API over HTTPS.

Use it with your favorite AI tools

Connect this server to Cursor, Claude, VS Code, and more.

OpenAI Agents SDK sdk-python

Google ADK sdk-python

Pydantic AI sdk-python

Vercel AI SDK sdk-typescript