How to Use the HackEDU (Security Journey) MCP in LangChain

Q: How do I connect the HackEDU (Security Journey) MCP Server to a LangChain agent?

Install langchain-mcp-adapters and use the MultiServerMCPClient to connect to the server's HTTP endpoint. Call client.gettools() to retrieve the HackEDU tools and pass them directly to your agent's tool list.

Trigger targeted developer security training and track team progress via this MCP Server in LangChain.

See Vinkius in Action

Works with every AI agent you already use

…and any MCP-compatible client

MCP Servers - Free for Subscribers

Connect HackEDU (Security Journey) MCP to LangChain

Create your Vinkius account to connect HackEDU (Security Journey) to LangChain and route execution through our secure gateway. The platform manages server hosting, runtime updates, and security layers. Configuration requires no manual server provisioning.

GDPR Free for Subscribers

Setup HackEDU (Security Journey) with LangChain

Ask AI about this MCP

ChatGPT

Claude

Perplexity

Automate Vulnerability Remediation in LangChain

The `list_vulnerabilities` tool maps security flaws to the HackEDU taxonomy so your LangChain agent can identify exactly what developers need to learn. Once a vulnerability is spotted, the agent routes this data to `create_issue` to generate a targeted training assignment. This lets you build a chain that reacts immediately to incoming security alerts without manual triage. By linking these tools in a LangGraph state machine, you can run a multi-step loop that catches a code flaw, finds the right lesson, and assigns it. You can trace this entire decision-making process in LangSmith to verify that your agent isn't assigning irrelevant courses. It turns static training into an active, event-driven response pipeline.

Dynamic Training Plans Guided by Live Security Data

The `list_adaptive_training_plans` tool lets your LangChain agent fetch custom training paths based on active threats in your codebase. Your agent can query these plans and cross-reference them with `list_content` to see which specific interactive exercises are available. This ensures the training you spin up actually matches the real-world bugs your team is writing. Because LangChain supports multi-server aggregation, you can feed data from your static analysis tools directly into this MCP Server. Your pipeline reads the scanner output, matches it with HackEDU's taxonomy, and updates the team's training queue. No more forcing developers to sit through generic modules that have nothing to do with their actual stack.

Real-Time Progress Auditing via MCP Server

The `get_team_progress` tool exposes completion rates and active training metrics to your LangChain agent for instant compliance reporting. Your agent can query this tool alongside `get_user_progress` to pinpoint which teams are falling behind on their security requirements. You can run these checks on a cron job or call them on-demand via a Slack bot. Using LangChain's observability tools, you can track how many tokens and tool calls it takes to audit your organization. The agent queries `list_teams`, iterates through the IDs, and compiles a clean report. This gives you a clear view of your security posture without logging into a separate dashboard.

Setup guide

Set up HackEDU (Security Journey) MCP in LangChain

Prerequisites

Python 3.10+ installed
langchain-mcp-adapters + langgraph packages
Active Vinkius subscription with a valid endpoint token

1

Install dependencies
Run pip install langchain-mcp-adapters langgraph langchain-openai. The MCP adapters package converts MCP tools into native LangChain BaseTool objects.
2

Connect via HTTP transport
Use MultiServerMCPClient with "transport": "http" pointing to your Vinkius endpoint. Replace [YOUR_TOKEN_HERE] with your token from cloud.vinkius.com.
3

Create a ReAct agent
Pass the discovered tools to create_react_agent() from LangGraph. The agent automatically routes HackEDU (Security Journey) tool calls through the MCP protocol.
4

Run with any LLM
Swap ChatOpenAI for ChatAnthropic, ChatGoogleGenerativeAI, or any LangChain-compatible model. The MCP tools work identically across all providers.

agent.py

from langchain_mcp_adapters.client import MultiServerMCPClient
from langgraph.prebuilt import create_react_agent
from langchain_openai import ChatOpenAI

async with MultiServerMCPClient({
    "hackedu-security-journey-mcp": {
        "transport": "http",
        "url": "https://edge.vinkius.com/[YOUR_TOKEN_HERE]/mcp",
    }
}) as client:
    tools = client.get_tools()

    agent = create_react_agent(
        ChatOpenAI(model="gpt-4o"),
        tools,
    )
    result = await agent.ainvoke({
        "messages": "List recent HackEDU (Security Journey) transactions"
    })
    print(result["messages"][-1].content)

Get your connection token →

Independent Platform Disclaimer: Vinkius is an independent platform and is not affiliated with, endorsed by, sponsored by, verified by, or otherwise authorized by HackEDU. All third-party trademarks, logos, and brand names are the property of their respective owners. Their use on this website is strictly for informational purposes to identify service compatibility and interoperability.

Why Choose Vinkius

Vinkius connects your tools to AI with real-time monitoring and automatic cost savings — all from one dashboard.

Connect HackEDU (Security Journey) now

Real-time monitoring

Live

visibility into every interaction

Connect your favorite tools to your AI and see exactly what's happening — every request, every response, in real time.

Built-in savings

60%

lower AI costs

Vinkius compresses data between your apps and your AI automatically. Lower bills every month — no configuration required.

Single dashboard

One

place for every integration

Every tool your AI connects to, managed from a single screen. One account, complete control.

Common questions about HackEDU (Security Journey) MCP in LangChain

Install `langchain-mcp-adapters` and use the `MultiServerMCPClient` to connect to the server's HTTP endpoint. Call `client.get_tools()` to retrieve the HackEDU tools and pass them directly to your agent's tool list.

Yes, you can build a chain where the agent receives a vulnerability report, calls `list_vulnerabilities` to match the CWE, and then calls `create_issue` to assign the training. LangSmith will trace the entire execution flow so you can audit the decisions.

You can manage rate limits by using LangChain's built-in retry logic or structuring your LangGraph state to batch requests. When calling `list_users`, the agent can process users in chunks to avoid hitting API thresholds.

Yes, LangChain allows you to mix these security training tools with databases or code repositories in the same runtime. You can fetch a bug from GitHub, map it to HackEDU, and assign the training in one go.

This MCP Server handles sensitive developer progress data, email addresses, and team IDs. All communication runs through a secure, isolated V8 sandbox on Vinkius, ensuring your training records and user profiles never leak to third parties.

Use it with your favorite AI tools

Connect this server to Cursor, Claude, VS Code, and more.

OpenAI Agents SDK sdk-python

Google ADK sdk-python

Pydantic AI sdk-python

Vercel AI SDK sdk-typescript