4,500+ servers built on MCP Fusion
Vinkius
FOSSA (License Compliance) logo
Vinkius
VS Code Copilot logo

How to Use the FOSSA (License Compliance) MCP in VS Code Copilot

Share FOSSA compliance checks across your whole team with VS Code Copilot and this dedicated MCP Server.

See Vinkius in Action

Works with every AI agent you already use

…and any MCP-compatible client

FOSSA (License Compliance) MCP on Cursor AI Code Editor MCP Client FOSSA (License Compliance) MCP on Claude Desktop App MCP Integration FOSSA (License Compliance) MCP on OpenAI Agents SDK MCP Compatible FOSSA (License Compliance) MCP on Visual Studio Code MCP Extension Client FOSSA (License Compliance) MCP on GitHub Copilot AI Agent MCP Integration FOSSA (License Compliance) MCP on Google Gemini AI MCP Integration FOSSA (License Compliance) MCP on Lovable AI Development MCP Client FOSSA (License Compliance) MCP on Mistral AI Agents MCP Compatible FOSSA (License Compliance) MCP on Amazon AWS Bedrock MCP Support
MCP Servers - Free for Subscribers
VS Code Copilot

Connect FOSSA (License Compliance) MCP to VS Code Copilot

Create your Vinkius account to connect FOSSA (License Compliance) to VS Code Copilot and route execution through our secure gateway. The platform manages server hosting, runtime updates, and security layers. Configuration requires no manual server provisioning.

GDPR Free for Subscribers
Setup FOSSA (License Compliance) with VS Code Copilot
ChatGPT ChatGPT Claude Claude Perplexity Perplexity

Team-Wide Compliance Audits in Copilot

The `list_projects` tool pulls your entire organization's compliance catalog directly into VS Code Copilot. By committing the MCP Server config to `.vscode/mcp.json`, every developer on your team instantly gains access to these shared project lists. Your team can use Copilot Chat to query `list_revisions` and verify that their current branch matches the approved release candidates. It removes the friction of managing compliance settings across multiple developer machines.

Deep Dependency Traversal in VS Code

The `get_revision_dependencies` tool extracts the complete tree of open-source packages for any target build. VS Code Copilot uses this data to let developers audit transitive licenses during code reviews. When a developer asks about a specific package, Copilot uses `get_parent_projects` to show which other internal repositories depend on it. This makes it easy to assess the blast radius of a newly discovered licensing issue.

Instant Vulnerability Auditing via VS Code Copilot

The `check_vulnerabilities` tool runs dependency locators through FOSSA's vulnerability database to find active security flaws. VS Code Copilot displays these findings inline, allowing your team to patch security holes before merging pull requests using the MCP Server integration. You can use `get_revision` to double-check the security posture of a specific release. This ensures that your production builds are clean of high-severity CVEs before deployment.

Setup guide

Set up FOSSA (License Compliance) MCP in VS Code Copilot

Prerequisites

  • VS Code 1.99 or later with GitHub Copilot extension
  • Active Vinkius subscription with a valid endpoint token
  1. 1

    Open MCP configuration

    Open the Command Palette (Cmd+Shift+P / Ctrl+Shift+P) and run "MCP: Add Server". Select HTTP (Streamable) as the server type. VS Code will create .vscode/mcp.json in your workspace.

  2. 2

    Add the FOSSA (License Compliance) MCP

    Paste the JSON snippet shown on the right into your .vscode/mcp.json. Replace [YOUR_TOKEN_HERE] with your endpoint token from cloud.vinkius.com.

  3. 3

    Switch to Agent mode

    Open Copilot Chat (Cmd+Shift+I / Ctrl+Shift+I) and switch to Agent mode using the dropdown. MCP tools are only available in Agent mode — they do not appear in Edit or Ask modes.

  4. 4

    Verify the connection

    In the Copilot Chat input, type # to list available tools. You should see the FOSSA (License Compliance) tools listed. Try asking: "List my recent FOSSA (License Compliance) transactions" and Copilot will invoke them automatically.

.vscode/mcp.json 
{
  "mcpServers": {
    "fossa-license-compliance-mcp": {
      "url": "https://edge.vinkius.com/[YOUR_TOKEN_HERE]/mcp"
    }
  }
}
Get your connection token →

Independent Platform Disclaimer: Vinkius is an independent platform and is not affiliated with, endorsed by, sponsored by, verified by, or otherwise authorized by FOSSA. All third-party trademarks, logos, and brand names are the property of their respective owners. Their use on this website is strictly for informational purposes to identify service compatibility and interoperability.

Why Choose Vinkius

Vinkius connects your tools to AI with real-time monitoring and automatic cost savings — all from one dashboard.

Connect FOSSA (License Compliance) now

Real-time monitoring

Live

visibility into every interaction

Connect your favorite tools to your AI and see exactly what's happening — every request, every response, in real time.

Built-in savings

60%

lower AI costs

Vinkius compresses data between your apps and your AI automatically. Lower bills every month — no configuration required.

Single dashboard

One

place for every integration

Every tool your AI connects to, managed from a single screen. One account, complete control.

Common questions about FOSSA (License Compliance) MCP in VS Code Copilot

Create a `.vscode/mcp.json` file in your repository root and add the FOSSA MCP Server configuration. Once committed, any team member using VS Code Copilot (version 1.96 or higher) will automatically have access to the compliance tools.
Yes, Copilot calls `get_revision_dependencies` to retrieve the entire dependency tree, including deep nested packages. This allows the agent to analyze licenses that do not appear directly in your top-level package files.
No, the MCP Server requires an active internet connection to query the FOSSA API for vulnerability and project data. However, the server itself runs locally on your machine, managing the API calls securely.
You can ask VS Code Copilot to run `get_parent_projects` with the package locator. The agent will return a list of all registered projects in your organization that contain that specific dependency.
Your API key is loaded as a local environment variable on each developer's machine and is never committed to git. The MCP Server uses this local credential to make direct, encrypted HTTPS requests to FOSSA, keeping your organization's project list secure.

Use it with your favorite AI tools

Connect this server to Cursor, Claude, VS Code, and more.

Claude Desktop ide
Cursor ide
VS Code Copilot ide
Windsurf ide
Cline ide
Claude Code cli
OpenAI Agents SDK sdk-python
Google ADK sdk-python
Pydantic AI sdk-python
Vercel AI SDK sdk-typescript
Mastra AI sdk-typescript
Mastra AI
CrewAI framework
LangChain framework
LlamaIndex framework
LlamaIndex
AutoGen framework
AutoGen

Start using the FOSSA (License Compliance) MCP today

We host it, we monitor it, we maintain it. You just paste one token.

Get started
Built & Managed by Vinkius 30s setup 6 tools

We've already built the connector for FOSSA (License Compliance). Just plug in your AI agents and start using Vinkius.

No hosting. No infrastructure. No complex setup.
All 6 tools are live and waiting. You're up and running in seconds.

Claude Claude
ChatGPT ChatGPT
Cursor Cursor
Gemini Gemini
Windsurf Windsurf
VS Code VS Code
JetBrains JetBrains
Vercel Vercel
+ other MCP clients

Vinkius gives your AI agents access to the full catalog of app connectors, all fully managed, secure, and enterprise-ready. One subscription, every tool you need.

Zero hosting required Full MCP catalog included Enterprise-grade security Auto-updated by Vinkius

Built, hosted, and secured by Vinkius. You just connect and go.