How to Use the Have I Been Pwned MCP in Claude Code

Q: Does Claude Code support all 5 tools?

Yes, every tool including getbreachdetails and listallbreaches is fully compatible with the terminal interface.

Bring security to your terminal. Claude Code connects to this MCP Server to audit your infrastructure in CI/CD pipelines.

See Vinkius in Action

Works with every AI agent you already use

…and any MCP-compatible client

MCP Servers - Free for Subscribers

Connect Have I Been Pwned MCP to Claude Code

Create your Vinkius account to connect Have I Been Pwned to Claude Code and route execution through our secure gateway. The platform manages server hosting, runtime updates, and security layers. Configuration requires no manual server provisioning.

GDPR Free for Subscribers

Setup Have I Been Pwned with Claude Code

Ask AI about this MCP

ChatGPT

Claude

Perplexity

Headless breach monitoring via Claude Code

Automate your security checks in the shell. Claude Code uses `search_account_breaches` to monitor your service accounts, piping the results directly into your log files. This MCP Server fits right into your existing scripts. It allows you to build a security gate that blocks builds if a developer account shows up in a new breach.

Validate credentials in Claude Code

Check password strength during your deployment process. Claude Code calls `check_password_safety` to ensure no one is using compromised strings in your config files. It provides a quick, binary result for your pipelines. If a password is found in a leak, the agent triggers a failure, forcing an immediate rotation.

Terminal-based paste discovery

Monitor for leaked internal data without leaving the CLI. Claude Code uses `search_account_pastes` to track your domain emails, notifying you of any public exposure. This MCP Server gives you the raw intelligence you need to secure your environment. It integrates cleanly with your shell workflows, keeping security front and center.

Setup guide

Set up Have I Been Pwned MCP in Claude Code

Prerequisites

Claude Code CLI installed (npm install -g @anthropic-ai/claude-code)
Active Vinkius subscription with a valid endpoint token

1

Run the add command

Open your terminal and run the command shown on the right. Replace [YOUR_TOKEN_HERE] with your endpoint token from cloud.vinkius.com. Use --scope user to make it available across all projects.
2

Verify the connection

Start a Claude Code session and type /mcp to list connected servers. You should see have-i-been-pwned-mcp with a green status indicator.
3

Start using tools

Ask Claude Code something like "Check my latest Have I Been Pwned transactions." It will automatically discover and invoke the available Have I Been Pwned tools.

Terminal

claude mcp add --transport http have-i-been-pwned-mcp https://edge.vinkius.com/[YOUR_TOKEN_HERE]/mcp

Get your connection token →

Prerequisites

Claude Code CLI installed
Active Vinkius subscription with a valid endpoint token

1

Open the config file

Create or edit .mcp.json in your project root for project-level scope, or ~/.claude.json for user-level scope.
2

Add the Have I Been Pwned MCP

Paste the JSON snippet shown on the right into the mcpServers object. Replace [YOUR_TOKEN_HERE] with your endpoint token from cloud.vinkius.com.
3

Restart Claude Code

Start a new Claude Code session. Type /mcp to confirm the server is connected. The tools will be automatically available in your conversation.

.mcp.json

{
  "mcpServers": {
    "have-i-been-pwned-mcp": {
      "type": "url",
      "url": "https://edge.vinkius.com/[YOUR_TOKEN_HERE]/mcp"
    }
  }
}

Get your connection token →

Independent Platform Disclaimer: Vinkius is an independent platform and is not affiliated with, endorsed by, sponsored by, verified by, or otherwise authorized by Have I Been Pwned. All third-party trademarks, logos, and brand names are the property of their respective owners. Their use on this website is strictly for informational purposes to identify service compatibility and interoperability.

Why Choose Vinkius

Vinkius connects your tools to AI with real-time monitoring and automatic cost savings — all from one dashboard.

Connect Have I Been Pwned now

Real-time monitoring

Live

visibility into every interaction

Connect your favorite tools to your AI and see exactly what's happening — every request, every response, in real time.

Built-in savings

60%

lower AI costs

Vinkius compresses data between your apps and your AI automatically. Lower bills every month — no configuration required.

Single dashboard

One

place for every integration

Every tool your AI connects to, managed from a single screen. One account, complete control.

Common questions about Have I Been Pwned MCP in Claude Code

Use the add command to connect this server via HTTP. Once added, Claude Code treats the breach data as a standard tool output.

Only locally in your terminal history. The server implementation ensures your queries are transient and not stored on any remote disk.

Absolutely. You can script the tool calls to run during your automated testing phase to prevent compromised credentials from reaching production.

Yes, every tool including `get_breach_details` and `list_all_breaches` is fully compatible with the terminal interface.

Yes, it only processes the specific identifiers you send. It does not retain your emails or hashes, ensuring your data footprint remains minimal.

Use it with your favorite AI tools

Connect this server to Cursor, Claude, VS Code, and more.

OpenAI Agents SDK sdk-python

Google ADK sdk-python

Pydantic AI sdk-python

Vercel AI SDK sdk-typescript

Mastra AI sdk-typescript

Start using the Have I Been Pwned MCP today

We host it, we monitor it, we maintain it. You just paste one token.

Get started