Stop Searching. Start Trusting.

The curated directory of MCP servers, vetted for security, efficiency, and quality.

Browse DirectoryWhy Us?

Tired of the MCP "Marketplace" Chaos?

We built MCPScout.ai to solve the ecosystems biggest pain points.

No Insecure Dumps

We manually analyze every server for basic security flaws.

Easy Setup

Our gotcha notes warn you about complex setups.

Avoid "Token Hogs"

We estimate token costs for cost-effective agents.

Products, Not Demos

We filter out "Hello World" demos.

CATEGORIES:
SORT:

Vetted Servers(500)

100
3536
Medium Cost
antvis icon
Sec8

A Model Context Protocol server for generating charts using AntV for various data visualization and analysis needs.

Setup Requirements

  • ⚠️Requires Node.js runtime (handled by npx for ease of use).
  • ⚠️Relies on an external chart generation service (https://antv-studio.alipay.com/api/gpt-vis by default); private deployment is possible via `VIS_REQUEST_SERVER` environment variable.
  • ⚠️Geographic map generation tools (district, path, pin maps) are limited to data within China and use AMap service.
Verified SafeView Analysis
The server uses Zod for robust input validation on all chart generation tools, which helps prevent malformed data and potential injection issues. It offloads actual chart rendering to an external service (defaulting to AntV's public service), which means data is transmitted off-server by default. While this is configurable for private deployments, users should be aware of this data flow. CORS is enabled for all origins ('*'), which is typical for an API designed for broad client integration but should be considered in specific deployment scenarios.
Updated: 2026-01-19GitHub
100
43839
High Cost
sansan0 icon

TrendRadar

by sansan0

Sec9

An AI-powered server for aggregating, filtering, analyzing, and translating trending news and RSS feeds, providing deep insights and smart notifications.

Setup Requirements

  • ⚠️Requires an AI API Key (e.g., DeepSeek, OpenAI, Google Gemini) which may incur costs.
  • ⚠️For GitHub Actions 'Full Mode', requires S3-compatible cloud storage (e.g., Cloudflare R2), necessitating a payment method for identity verification, even for free tiers.
  • ⚠️Requires Python and 'uv' for local execution (installation handled by setup scripts).
Verified SafeView Analysis
The project emphasizes secure handling of API keys and webhooks by strongly recommending environment variables or GitHub Secrets over hardcoding in config files. The Docker deployment for the MCP server defaults to local (127.0.0.1) binding for enhanced security. While the `start-http.sh` script binds to `0.0.0.0`, the documentation explicitly advises users to configure reverse proxies and authentication for remote access, showing awareness of network security concerns. No obvious malicious patterns or unjustified use of dangerous functions like `eval` were found.
Updated: 2026-01-19GitHub
100
8455
Low Cost
open-metadata icon

OpenMetadata

by open-metadata

Sec8

This server acts as a plugin for Apache Airflow, exposing REST APIs to manage OpenMetadata workflow definitions, DAGs, and tasks.

Setup Requirements

  • ⚠️Requires Apache Airflow version 2.3.3 to be installed.
  • ⚠️Specific configuration needed in `airflow.cfg` file (`dag_generated_configs` path).
  • ⚠️Manual directory creation: `mkdir -p {AIRFLOW_HOME}/dag_generated_configs` is required.
  • ⚠️Python `pip install openmetadata-airflow-managed-apis` is needed in Airflow's Python environment.
Verified SafeView Analysis
The provided source code is primarily for the frontend UI. It demonstrates good practices for handling user input and constructing search queries (using `escapeESReservedCharacters`) to mitigate potential injection risks in Elasticsearch. Authentication is handled via JWT tokens (backend responsibility, but frontend uses it securely). There are explicit tests for XSS vulnerabilities within the audit logs display. No `eval` or malicious patterns were found in the provided UI code. The overall security relies heavily on the backend API's implementation, but the frontend interaction patterns are sound.
Updated: 2026-01-19GitHub
100
2131
Medium Cost
grafana icon

mcp-grafana

by grafana

Sec9

Provides a Model Context Protocol (MCP) server for Grafana, enabling AI agents to interact with Grafana features such as dashboards, datasources, alerting, incidents, and more through a structured tool-based interface.

Setup Requirements

  • ⚠️Requires Grafana version 9.0 or later for full functionality, particularly for datasource-related API endpoints.
  • ⚠️Authentication requires a Grafana service account token (preferred, using GRAFANA_SERVICE_ACCOUNT_TOKEN env var) or username/password; access will be limited without proper credentials.
  • ⚠️The 'get_panel_image' tool requires the Grafana Image Renderer service to be installed and configured separately.
Verified SafeView Analysis
The server demonstrates good security practices for an integration component. It reads authentication credentials (API keys, basic auth, access tokens) from environment variables, preventing hardcoding. Network communication with Grafana and its datasources is handled with TLS configuration options. Response bodies are read with limits to prevent memory exhaustion, and non-200 HTTP statuses are handled with error messages. No obvious 'eval' or obfuscation patterns were found. The 'disable-write' flag and RBAC guidance are crucial for secure deployments.
Updated: 2026-01-19GitHub
99
807
Medium Cost
golf-mcp icon

golf

by golf-mcp

Sec4

A Python framework for building conversational AI servers (MCP servers) by defining tools, resources, and prompts as modular Python files, with integrated authentication, telemetry, and LLM interaction utilities.

Setup Requirements

  • ⚠️Requires Python 3.10+ (minimum 3.8+ as per `pyproject.toml`) for optimal functionality.
  • ⚠️Relies on `fastmcp>=2.14.0` as a core, tight dependency.
  • ⚠️Authentication can be complex to configure (supporting JWT, OAuth Server, API Key, and Static Tokens) and often requires specific environment variables (`auth.py` and `.env` configuration) for production deployments.
Review RequiredView Analysis
The example `calculator.py` tool (generated by default with `golf init`) uses `eval()` to evaluate mathematical expressions. While it includes a basic character whitelist, `eval()` is inherently dangerous and, if exposed to untrusted input (e.g., from an LLM generating malicious input or a direct API call), it poses a critical remote code execution vulnerability. For production environments, this tool should be removed or replaced with a safer expression parser. Other `exec()` and `subprocess` calls within the framework are for executing trusted local project files during the build/run process, which is generally acceptable. Telemetry uses a public API key and explicitly disables IP address collection.
Updated: 2026-01-17GitHub
99
982
High Cost
openops-cloud icon

openops

by openops-cloud

Sec7

OpenOps is a No-Code FinOps automation platform that helps organizations reduce cloud costs, streamline financial operations, and automate key FinOps processes through customizable workflows and AI capabilities.

Setup Requirements

  • ⚠️Requires Docker and Docker Compose for local or self-hosted deployments.
  • ⚠️Critical: For self-hosted deployments, manual generation and configuration of sensitive environment variables (e.g., OPS_ENCRYPTION_KEY, OPS_JWT_SECRET, admin passwords) are required, as placeholders are provided.
  • ⚠️Requires Node.js versions 18 or 20 for development setup.
  • ⚠️Cloud provider (AWS, Azure, GCP) credentials/service accounts are necessary for activating respective integration blocks.
Verified SafeView Analysis
The platform inherently executes external commands for integrations (e.g., `gcloud`, `az`, `aws`) using `child_process.spawn` and `execFile`. `eval` is utilized for dynamic module loading of blocks in development mode, which is a potential risk but restricted to that context. Hardcoded secrets in `deploy/helm/openops/values.yaml` are explicitly marked as placeholders (`please-change-this-secret`) requiring user replacement, which is a good practice. `docker-entrypoint.sh` and `tools/link-packages.sh` perform sensitive actions like `npm install` and `rm -rf node_modules`, typically executed in trusted build/deployment environments.
Updated: 2026-01-19GitHub
98
674
Low Cost
bgauryy icon

octocode-mcp

by bgauryy

Sec9

The Octocode Research server enables AI agents to perform expert code forensics and deep-dive research across local filesystems (LSP, ripgrep, file I/O) and external GitHub repositories (code search, repo structure, pull requests, package search). It's optimized for architectural analysis, pattern discovery, and implementation planning.

Setup Requirements

  • ⚠️Requires Node.js v20 or higher.
  • ⚠️GitHub API tools require authentication (GitHub token via OAuth, gh CLI, or PAT). Without it, rate limits will be hit quickly.
  • ⚠️Local tools (`ripgrep`, `ls`, `find`) depend on these commands being installed and available in the system's PATH. LSP tools require a compatible LSP server (e.g., `typescript-language-server`).
  • ⚠️Uses port 1987 by default; a conflict will prevent the server from starting.
Verified SafeView Analysis
The server implements strong security measures including Zod-based input validation, explicit path traversal protection, and command injection prevention for spawned child processes (e.g., `ripgrep`, `ls`). Sensitive data is redacted from logs and output. Authentication tokens are handled securely via environment variables, GitHub CLI, or an encrypted local store. The server binds to `localhost` by default. External exposure would require additional security layers.
Updated: 2026-01-18GitHub
97
511
High Cost
neiltron icon

apple-health-mcp

by neiltron

Sec9

Query and analyze personal Apple Health data using SQL for health insights and automated reports.

Setup Requirements

  • ⚠️Requires Apple Health data exported as CSV files using the 'Simple Health Export CSV' iOS app.
  • ⚠️The `HEALTH_DATA_DIR` environment variable must be set to the path of the unzipped health export directory.
  • ⚠️Requires Node.js (or Bun) installed for `npx` execution.
Verified SafeView Analysis
The server uses an in-memory DuckDB instance and explicitly forbids DML/DDL operations ('drop', 'delete', 'truncate', 'insert', 'update', 'create table', 'alter') in the 'health_query' tool, allowing only SELECT statements. It processes local CSV files from a user-defined directory (`HEALTH_DATA_DIR`). The primary security considerations revolve around ensuring the `HEALTH_DATA_DIR` is trusted (as malicious CSV content could theoretically lead to resource exhaustion) and the robustness of the SQL query validation, which is a keyword-based check. Given it's designed as an internal MCP server for local data, these measures provide a high level of safety against typical external threats.
Updated: 2026-01-16GitHub
96
342
High Cost
Shashankss1205 icon

CodeGraphContext

by Shashankss1205

Sec9

An AI pair programmer that provides real-time, accurate, context-aware assistance by indexing and analyzing codebases (local projects and dependencies) using a graph database, facilitating code understanding, writing, and refactoring across multiple programming languages.

Setup Requirements

  • ⚠️Requires Python 3.12+ for the default FalkorDB Lite embedded database. Earlier Python versions will necessitate an external Neo4j setup.
  • ⚠️An external Neo4j database is required if FalkorDB Lite is not used or explicitly configured via environment variables (NEO4J_URI, NEO4J_USERNAME, NEO4J_PASSWORD).
  • ⚠️Language-specific executables (e.g., 'npm', 'go', 'gem', 'pkg-config') must be available in the system PATH for accurate dependency resolution for respective languages.
  • ⚠️Installing 'falkordblite' is recommended for a zero-config embedded database experience.
Verified SafeView Analysis
The server's primary communication method is via stdin/stdout, which limits direct network exposure. It includes robust checks to prevent arbitrary write operations when executing Cypher queries, by filtering forbidden keywords after stripping string literals. While `subprocess.run` is used for language-specific package discovery (e.g., `npm`, `go list`), these calls are generally well-defined with `shell=False`, reducing the risk of command injection.
Updated: 2026-01-16GitHub
93
4167
Low Cost
wgpsec icon

ENScan_GO

by wgpsec

Sec4

An OSINT (Open Source Intelligence) tool for gathering comprehensive corporate information from various public data sources, primarily for security assessments (HW/SRC scenarios).

Setup Requirements

  • ⚠️Requires manual configuration of API cookies for various data sources (e.g., Aiqicha, Tianyancha, KuaiCha) in `config.yaml`.
  • ⚠️Use of the program may lead to account anomalies or bans on target platforms.
  • ⚠️Go version >= 1.22.1 is required for building.
  • ⚠️All HTTPS requests are vulnerable to Man-in-the-Middle attacks due to disabled certificate verification.
Review RequiredView Analysis
The tool explicitly disables TLS certificate verification (`InsecureSkipVerify: true`) for all HTTPS connections. This is a critical vulnerability that makes all network communications susceptible to Man-in-the-Middle (MiTM) attacks, compromising data integrity and confidentiality. While the tool's intended use is OSINT, this fundamental flaw severely undermines the security of its operations. Configuration values for sensitive items like API cookies are read from a YAML file, `config.yaml`, which should be secured.
Updated: 2026-01-05GitHub
92
76
High Cost
postrv icon

narsil-mcp

by postrv

Sec9

AI-powered code analysis and understanding for developers and coding agents, providing semantic search, call graphs, security audits, and architectural insights.

Setup Requirements

  • ⚠️Requires 'git' command-line tool to be installed and available in PATH.
  • ⚠️Requires API keys (e.g., VOYAGE_API_KEY, OPENAI_API_KEY) for neural embeddings backend; these are typically paid services.
  • ⚠️Advanced graph features (CCG, SPARQL) require building with '--features graph' and local persistence, increasing resource usage.
Verified SafeView Analysis
The project demonstrates a strong focus on security, with explicit modules for secret redaction, robust input validation (e.g., git arguments, regex patterns for ReDoS prevention, path traversal checks), and a default 'read_only' mode. It also includes comprehensive security scanning capabilities as core features, such as taint analysis, OWASP Top10, and CWE Top25 checks. No obvious critical vulnerabilities or malicious patterns were found in the provided source code snippets.
Updated: 2026-01-18GitHub
89
25
High Cost
VladyslavMykhailyshyn icon

ukrainian-stats-mcp-server

by VladyslavMykhailyshyn

Sec9

Provides AI models with structured access to Ukrainian statistical data from the State Statistics Service of Ukraine via their SDMX API v3, including comprehensive metadata and flexible data retrieval.

Setup Requirements

  • ⚠️Requires Node.js 18 or higher.
  • ⚠️Requires manual configuration in Claude Desktop's `claude_desktop_config.json`.
  • ⚠️Requires internet connectivity to `https://stat.gov.ua` to fetch data.
Verified SafeView Analysis
The server code does not appear to contain malicious patterns, 'eval' usage, or hardcoded sensitive secrets. It acts as a proxy to a public SDMX API, converting XML responses to JSON. The installation script, while performing global npm operations, does not use suspicious commands. All tool arguments are passed directly, not evaluated as code, mitigating injection risks. The `baseURL` for the public Ukrainian Statistics API is hardcoded, which is acceptable for a public, non-credentialed service.
Updated: 2025-11-30GitHub
PreviousPage 1 of 42Next