Book a Demo →

MCP Local

Use Oplane directly in your dev environment through the Model Context Protocol (MCP). Get security recommendations and threat modeling assistance while you code.

Getting Started

To connect Oplane MCP to your dev environment, visit your Oplane dashboard and follow the setup instructions for your specific environment. The setup process takes just a few minutes.

Once connected, simply prompt your AI assistant with "Use Oplane" to get started. If you choose to create a new threat model, the entire workflow below runs automatically — from identifying use cases and threats to providing implementation advice and assessing your code.

Getting started with Oplane
+×

Workflow

Here's what happens under the hood when you run a threat modeling session. Each step is handled by a dedicated MCP command:

  1. new_threatmodel

    Start a new threat model for a scope in your application — for example an authentication flow, an API endpoint, or a payment module. Oplane analyses the code and identifies use cases, abuse cases, and threats.

    Try: "Help me threat model the authentication flow"

  2. request_implementation_advice

    Once threats have been identified, ask Oplane for concrete implementation advice on how to mitigate them. You get actionable recommendations tailored to your tech stack and architecture.

    Try: "Get implementation advice for this security requirement"

  3. assess_current_implementation

    Let Oplane evaluate your existing code against the identified threats. It checks whether your current implementation already addresses the risks or if gaps remain.

    Try: "What are the security risks in my current code?"

  4. Make your changes

    Implement the recommended fixes directly in your dev environment. With the threat model and implementation advice at hand, your AI assistant can help you write the code to address each identified threat.

  5. update_implementation_status

    After making changes, update the status of each threat's implementation. This keeps your threat model in sync with your codebase and builds your compliance trail.

Tip: You can start by asking "Suggest scopes to threat model using Oplane" if you're not sure where to begin.

Supported Environments

Oplane's MCP server works with any dev environment or application that supports the Model Context Protocol:

Cursor

Connect Oplane MCP directly in Cursor's MCP settings for seamless integration.

Claude Desktop

Add Oplane to Claude Desktop to get security insights in your conversations.

Other MCP-Compatible Tools

Set up Oplane manually in any dev environment or tool that supports the MCP protocol.