Stop Searching. Start Trusting.

The curated directory of MCP servers, vetted for security, efficiency, and quality.

Browse Directory Why Us?

Tired of the MCP "Marketplace" Chaos?

We built MCPScout.ai to solve the ecosystems biggest pain points.

No Insecure Dumps

We manually analyze every server for basic security flaws.

Easy Setup

Our gotcha notes warn you about complex setups.

Avoid "Token Hogs"

We estimate token costs for cost-effective agents.

Products, Not Demos

We filter out "Hello World" demos.

CATEGORIES:

SORT:

Vetted Servers(1)

High Cost

ATC_SNOMED_MCP

by nmeldre

Sec5

This server maps medicinal product substance names to SNOMED CT Concept IDs and ATC codes using XML input and web scraping, primarily for Norwegian healthcare data.

Setup Requirements

⚠️Requires outbound internet access to 'dailybuild.terminologi.helsedirektoratet.no' (SNOMED CT API) and 'felleskatalogen.no' (ATC Code web scraping).
⚠️Relies on 'dailybuild.terminologi.helsedirektoratet.no' for SNOMED CT, which implies it might be a development/unstable endpoint.
⚠️Designed for FastMCP Cloud deployment, requiring a FastMCP account and platform understanding for setup and operation.

Review RequiredView Analysis

The server parses user-supplied XML content using `xml.etree.ElementTree.fromstring` without explicitly disabling DTD processing or external entity loading. This may create a potential XML External Entity (XXE) injection vulnerability if malicious XML input is provided. Additionally, the ATC code lookup performs web scraping, which introduces a dependency on external website structure and availability, though it doesn't pose a direct security risk to the server itself. File creation (`generate_output_filename`) is session-based and writes to an 'Output' directory, which is acceptable in this context but not robust against arbitrary path traversal if `input_filename` were directly user-controlled.

Updated: 2025-12-14GitHub→