ThreatLocker MCP Server: Install & Tools

Install

Connection

Transport: STDIO
Environment: { "THREATLOCKER_API_KEY": "YOUR_SECRET_VALUE", "THREATLOCKER_ORGANIZATION_ID": "YOUR_VALUE_HERE", "MCP_TRANSPORT": "stdio", "AUTH_MODE": "env", "LOG_LEVEL": "info" }

Claude Desktop

Add this server entry to the mcpServers object in your Claude Desktop config, then restart the app.

{
  "mcpServers": {
    "io-github-wyre-technology-threatlocker-mcp": {
      "command": "npx",
      "args": [
        "-y",
        "@modelcontextprotocol/server-io-github-wyre-technology-threatlocker-mcp"
      ],
      "env": {
        "THREATLOCKER_API_KEY": "YOUR_SECRET_VALUE",
        "THREATLOCKER_ORGANIZATION_ID": "YOUR_VALUE_HERE",
        "MCP_TRANSPORT": "stdio",
        "AUTH_MODE": "env",
        "LOG_LEVEL": "info"
      }
    }
  }
}

Config location

macOS: ~/Library/Application Support/Claude/claude_desktop_config.json
Windows: %APPDATA%\Claude\claude_desktop_config.json

Auth

Package transport

No remote HTTP endpoint is advertised. Use the package or stdio setup shown in Install.

Tools & Resources

Tools

Resources

Prompts

No public tools, resources, or prompts captured yet. Use Auth when this server requires credentials.

Tools

No tools captured yet.

Resources

No resources captured yet.

Prompts

No prompts captured yet.

Questions

What is ThreatLocker?+

ThreatLocker is an MCP server for MCP server for ThreatLocker — zero-trust endpoint protection, allowlisting, and policies.. It supports STDIO transport.

How do I install ThreatLocker?+

Use the client-specific config in Install and add it to your MCP-compatible client.

How do I add ThreatLocker to Claude Desktop?+

Choose the Claude Desktop tab in Install and copy the config into Claude Desktop's MCP server settings.

How do I add ThreatLocker to Claude Code?+

Choose the Claude Code tab in Install and copy the config into Claude Code's MCP server settings.

How do I use ThreatLocker with Codex?+

Choose the Codex tab in Install and copy the config into Codex's MCP server settings.

How do I add ThreatLocker to Cursor or VS Code?+

Choose the Cursor or VS Code tab in Install and copy the config into Cursor or VS Code's MCP server settings.

What endpoint and transport does ThreatLocker use?+

ThreatLocker uses STDIO transport. Use the package or command config in Install.

What tools and resources does ThreatLocker expose?+

ThreatLocker inventory is listed when the MCP endpoint exposes tools, resources, or prompts. Some servers require auth first.

Does ThreatLocker require authentication?+

ThreatLocker is marked with Auth required by registry metadata auth. You may need provider login, an API key, a bearer token, or a session header.

Profile notes

Package: Oci ghcr.io/wyre-technology/threatlocker-mcp:v1.2.2
Environment variable: THREATLOCKER_API_KEY (required; secret)
Environment variable: THREATLOCKER_ORGANIZATION_ID (required)
Environment variable: MCP_TRANSPORT (default stdio)
Environment variable: AUTH_MODE (default env)
Environment variable: LOG_LEVEL (default info)
The upstream registry signals required auth or secrets.

Packages

Package	Registry	Version	Inputs
`ghcr.io/wyre-technology/threatlocker-mcp:v1.2.2` stdio	oci	Not captured	Env: THREATLOCKER_API_KEY required secret Env: THREATLOCKER_ORGANIZATION_ID required Env: MCP_TRANSPORT Env: AUTH_MODE Env: LOG_LEVEL

Details

Version: 1.2.2
Auth: Auth required by registry metadata
Repository: https://github.com/wyre-technology/threatlocker-mcp
Website: https://github.com/wyre-technology/threatlocker-mcp
Updated: May 22, 2026

ThreatLocker

Install and compare this MCP server

Install

Connection

Claude Desktop

Config location

Auth

Tools & Resources

Tools

Resources

Prompts

Questions

Related MCPs

Profile notes

Packages

Details