PyPI - qualys-mcp - Versions diffs - 2.1.3__tar.gz → 2.1.5__tar.gz - Mend

qualys-mcp 2.1.3tar.gz → 2.1.5tar.gz

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

{qualys_mcp-2.1.3 → qualys_mcp-2.1.5}/PKG-INFO RENAMED Viewed

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: qualys-mcp
-Version: 2.1.3
+Version: 2.1.5
 Summary: MCP server for Qualys security APIs - natural language interaction with vulnerability, asset, and cloud security data
 Project-URL: Homepage, https://github.com/nelssec/qualys-mcp
 Project-URL: Repository, https://github.com/nelssec/qualys-mcp

{qualys_mcp-2.1.3 → qualys_mcp-2.1.5}/pyproject.toml RENAMED Viewed

@@ -4,7 +4,7 @@ build-backend = "hatchling.build"
 [project]
 name = "qualys-mcp"
-version = "2.1.3"
+version = "2.1.5"
 description = "MCP server for Qualys security APIs - natural language interaction with vulnerability, asset, and cloud security data"
 readme = "README.md"
 license = "MIT"

{qualys_mcp-2.1.3 → qualys_mcp-2.1.5}/qualys_mcp.py RENAMED Viewed

@@ -42,7 +42,7 @@ def get_bearer_token():
         return None
-def api_get(url, gateway=False):
+def api_get(url, gateway=False, timeout=30):
     req = Request(url)
     if gateway:
         token = get_bearer_token()
@@ -51,7 +51,7 @@ def api_get(url, gateway=False):
         req.add_header('Authorization', f'Basic {BASIC_AUTH}')
     req.add_header('X-Requested-With', 'qualys-mcp')
     try:
-        with urlopen(req, timeout=60) as resp:
+        with urlopen(req, timeout=timeout) as resp:
             return resp.read()
     except:
         return None
@@ -381,34 +381,49 @@ def get_security_posture() -> dict:
     health = 100
     result = {'healthScore': 0, 'assets': {'total': 0, 'highRisk': 0},
               'vulns': {'critical': 0, 'high': 0}, 'containers': {'total': 0, 'atRisk': 0},
-              'cloud': {'accounts': 0, 'failedControls': 0}}
+              'cloud': {'accounts': 0, 'failedControls': 0}, 'errors': []}
-    assets = get_assets(500)
-    result['assets']['total'] = len(assets)
-    result['assets']['highRisk'] = len([a for a in assets if a.get('assetRiskScore', 0) >= 700])
-    if assets:
-        health -= int(result['assets']['highRisk'] / len(assets) * 50)
-    result['vulns']['critical'] = len(get_detections(5, 200))
-    result['vulns']['high'] = len(get_detections(4, 200))
-    if result['vulns']['critical'] > 50:
-        health -= 20
-    elif result['vulns']['critical'] > 10:
-        health -= 10
-    imgs = get_images(500)
-    result['containers']['total'] = len(imgs)
-    vuln_ids = {i.get('imageId') for i in get_images(100, 5)}
-    result['containers']['atRisk'] = len([c for c in get_containers(500) if c.get('imageId') in vuln_ids])
+    try:
+        assets = get_assets(100)
+        result['assets']['total'] = len(assets)
+        result['assets']['highRisk'] = len([a for a in assets if a.get('assetRiskScore', 0) >= 700])
+        if assets:
+            health -= int(result['assets']['highRisk'] / len(assets) * 50)
+    except:
+        result['errors'].append('assets')
-    for p in ['aws', 'azure', 'gcp']:
-        conns = get_connectors(p, 20)
-        result['cloud']['accounts'] += len(conns)
-        if conns:
-            acc = conns[0].get('awsAccountId') or conns[0].get('azureSubscriptionId') or conns[0].get('gcpProjectId')
-            if acc:
-                result['cloud']['failedControls'] += len([e for e in get_evaluations(acc, p, 500) if e.get('result') in ['FAIL', 'FAILED']])
+    try:
+        result['vulns']['critical'] = len(get_detections(5, 100))
+        result['vulns']['high'] = len(get_detections(4, 100))
+        if result['vulns']['critical'] > 50:
+            health -= 20
+        elif result['vulns']['critical'] > 10:
+            health -= 10
+    except:
+        result['errors'].append('vulns')
+    try:
+        imgs = get_images(100)
+        result['containers']['total'] = len(imgs)
+        vuln_ids = {i.get('imageId') for i in get_images(50, 5)}
+        result['containers']['atRisk'] = len([c for c in get_containers(100) if c.get('imageId') in vuln_ids])
+    except:
+        result['errors'].append('containers')
+    try:
+        for p in ['aws']:
+            conns = get_connectors(p, 10)
+            result['cloud']['accounts'] += len(conns)
+            if conns:
+                acc = conns[0].get('awsAccountId') or conns[0].get('azureSubscriptionId') or conns[0].get('gcpProjectId')
+                if acc:
+                    result['cloud']['failedControls'] += len([e for e in get_evaluations(acc, p, 100) if e.get('result') in ['FAIL', 'FAILED']])
+                break
+    except:
+        result['errors'].append('cloud')
+    if not result['errors']:
+        del result['errors']
     result['healthScore'] = max(0, health)
     return result
@@ -795,6 +810,57 @@ def get_webapp_vulns(severity: int = 4, limit: int = 50) -> dict:
     return result
+@mcp.tool()
+def debug_api(endpoint: str = "eol") -> dict:
+    """Debug API connectivity. Use endpoint='eol' to test EOL query, 'assets' for basic assets, 'auth' for auth test."""
+    result = {'endpoint': endpoint, 'gateway_url': GATEWAY_URL, 'base_url': BASE_URL}
+    if endpoint == 'auth':
+        token = get_bearer_token()
+        result['token_obtained'] = bool(token)
+        result['token_preview'] = token[:20] + '...' if token else None
+        return result
+    if endpoint == 'assets':
+        assets = get_assets(5)
+        result['count'] = len(assets)
+        result['sample'] = assets[:2] if assets else []
+        return result
+    if endpoint == 'eol':
+        url = f"{GATEWAY_URL}/rest/2.0/search/am/asset?pageSize=5"
+        token = get_bearer_token()
+        result['token_obtained'] = bool(token)
+        filter_body = json.dumps({
+            "filters": [
+                {"field": "operatingSystem.lifecycle.stage", "operator": "IN", "value": "EOL,EOL/EOS,EOS"}
+            ]
+        })
+        result['request_url'] = url
+        result['request_body'] = filter_body
+        req = Request(url, data=filter_body.encode(), method='POST')
+        req.add_header('Authorization', f'Bearer {token}' if token else f'Basic {BASIC_AUTH}')
+        req.add_header('Content-Type', 'application/json')
+        req.add_header('X-Requested-With', 'qualys-mcp')
+        try:
+            with urlopen(req, timeout=60) as resp:
+                raw = resp.read()
+                result['response_code'] = resp.status
+                result['response_length'] = len(raw)
+                data = json.loads(raw)
+                result['has_assetListData'] = 'assetListData' in data
+                result['asset_count'] = len(data.get('assetListData', {}).get('asset', []))
+                if result['asset_count'] > 0:
+                    result['sample_asset'] = data['assetListData']['asset'][0]
+        except Exception as e:
+            result['error'] = str(e)
+    return result
 def main():
     mcp.run()

{qualys_mcp-2.1.3 → qualys_mcp-2.1.5}/.gitignore RENAMED Viewed

File without changes

{qualys_mcp-2.1.3 → qualys_mcp-2.1.5}/LICENSE RENAMED Viewed

File without changes

{qualys_mcp-2.1.3 → qualys_mcp-2.1.5}/README.md RENAMED Viewed

File without changes

qualys-mcp 2.1.3__tar.gz → 2.1.5__tar.gz

qualys-mcp 2.1.3tar.gz → 2.1.5tar.gz