How to Use the GitGuardian MCP in Windsurf
Stop hunting for leaked keys. Let your Windsurf agent scan, report, and secure your codebase using the GitGuardian MCP Server.
Works with every AI agent you already use
…and any MCP-compatible client
Connect GitGuardian MCP to Windsurf
Create your Vinkius account to connect GitGuardian to Windsurf and route execution through our secure gateway. The platform manages server hosting, runtime updates, and security layers. Configuration requires no manual server provisioning.
Automated scanning in Windsurf
Cascade runs `scan_content` directly on your active files to catch hardcoded secrets before you push. It identifies vulnerabilities the moment you save a file. When a secret surfaces, Cascade uses `scan_and_create_incidents` to log the event. You get immediate visibility without leaving your editor.
Active secret incident resolution
Your agent tracks open threats through `list_secret_incidents` to keep your workspace clean. It pulls the latest status so you aren't chasing ghosts. Once you patch the leak, trigger `resolve_secret_incident` to close the loop. Cascade handles the API calls while you focus on the fix.
Deploy deception traps
Use `create_honeytoken` to plant fake credentials in your project. These act as tripwires that trigger alerts if an unauthorized actor touches them. Cascade monitors these traps via `list_honeytoken_events`. If someone tries to use a stolen token, you'll know exactly which source they hit.
Set up GitGuardian MCP in Windsurf
Prerequisites
- Windsurf IDE installed (macOS, Windows, or Linux)
- Active Vinkius subscription with a valid endpoint token
- 1
Open MCP configuration
Click the Cascade assistant icon in the sidebar, then click the hammer icon (🔨) at the top of the panel. Select "Configure" to open
~/.codeium/windsurf/mcp_config.json. - 2
Add the GitGuardian MCP
Paste the JSON snippet shown on the right into the
mcpServersobject. Replace[YOUR_TOKEN_HERE]with your endpoint token from cloud.vinkius.com. - 3
Refresh MCPs
Go back to the hammer icon (🔨) in Cascade and click "Refresh". Windsurf will detect the new server. No full restart is needed — the connection is hot-reloaded.
- 4
Verify in Cascade
Start a new Cascade conversation and ask something like "Show my GitGuardian payment history." If connected, Cascade will call the GitGuardian tools directly. You will see a green dot next to the server name in the MCP panel.
{
"mcpServers": {
"gitguardian-mcp": {
"url": "https://edge.vinkius.com/[YOUR_TOKEN_HERE]/mcp"
}
}
}Independent Platform Disclaimer: Vinkius is an independent platform and is not affiliated with, endorsed by, sponsored by, verified by, or otherwise authorized by GitGuardian. All third-party trademarks, logos, and brand names are the property of their respective owners. Their use on this website is strictly for informational purposes to identify service compatibility and interoperability.
Why Choose Vinkius
Vinkius connects your tools to AI with real-time monitoring and automatic cost savings — all from one dashboard.
Real-time monitoring
Live
visibility into every interaction
Connect your favorite tools to your AI and see exactly what's happening — every request, every response, in real time.
Built-in savings
60%
lower AI costs
Vinkius compresses data between your apps and your AI automatically. Lower bills every month — no configuration required.
Single dashboard
One
place for every integration
Every tool your AI connects to, managed from a single screen. One account, complete control.
Common questions about GitGuardian MCP in Windsurf
Use it with your favorite AI tools
Connect this server to Cursor, Claude, VS Code, and more.
Start using the GitGuardian MCP today
We host it, we monitor it, we maintain it. You just paste one token.
