Stop Searching. Start Trusting.

The curated directory of MCP servers, vetted for security, efficiency, and quality.

Browse DirectoryWhy Us?

Tired of the MCP "Marketplace" Chaos?

We built MCPScout.ai to solve the ecosystems biggest pain points.

No Insecure Dumps

We manually analyze every server for basic security flaws.

Easy Setup

Our gotcha notes warn you about complex setups.

Avoid "Token Hogs"

We estimate token costs for cost-effective agents.

Products, Not Demos

We filter out "Hello World" demos.

CATEGORIES:
SORT:

Vetted Servers(8554)

32
1
High Cost
hyperpolymath icon

claude-firefox-mcp

by hyperpolymath

Sec3

An MCP (Model Context Protocol) server that enables Claude Code CLI to control the Firefox browser for automation tasks.

Setup Requirements

  • ⚠️Requires Deno runtime to be installed.
  • ⚠️Requires manual loading and configuration of the Firefox browser extension via `about:debugging`.
  • ⚠️Requires Claude Code CLI for client-side interaction and specific configuration in `~/.claude/settings.json`.
Review RequiredView Analysis
The server and browser extension allow arbitrary JavaScript execution on any loaded webpage via the `execute_js` tool and through the `read_page` implementation that leverages `browser.tabs.executeScript` and `eval`. This grants full control over the browser's context to the Claude Code CLI, posing a significant risk if the CLI itself or the communication channel is compromised. The browser extension also requires broad `<all_urls>` permissions. While the Deno server binds to `localhost`, limiting direct external network attacks, local exploits or compromised client processes could lead to severe consequences, including data theft or malicious activity within the browser.
Updated: 2026-01-17GitHub
32
2
Medium Cost
GhostTypes icon

pokemon-go-mcp

by GhostTypes

Sec9

A Model Context Protocol (MCP) server providing real-time Pokemon Go data (events, raids, research, eggs, Team Rocket, promo codes) via an API for integration with other tools.

Setup Requirements

  • ⚠️Python 3.10 or higher is required.
  • ⚠️Requires initial data scraping to populate the 'data/' directory. Without this, tools will return 'no data' messages. Example command: `python -c "from pogo_scraper.scraper import LeekDuckScraper; import asyncio; scraper = LeekDuckScraper(); asyncio.run(scraper.scrape_all())"`.
  • ⚠️A Docker image must be built before running via Docker: `docker build -t pogo-mcp-server .`.
  • ⚠️An MCP client (e.g., Claude Desktop, n8n, VS Code with MCP extension) is necessary to interact with the server's exposed tools.
Verified SafeView Analysis
The server primarily reads from local JSON data files populated by an integrated scraper. The scraper makes HTTP requests to leekduck.com, a trusted source, and parses HTML using BeautifulSoup. There are no identified instances of 'eval', obfuscation, hardcoded secrets, or malicious command execution from untrusted input within the server's core logic. The `data/` directory where scraped information is stored should be secured appropriately.
Updated: 2026-01-19GitHub
32
20
Medium Cost
schemacrawler icon
Sec9

Provides an AI-powered MCP server for database schema analysis, SQL generation, and database interaction.

Setup Requirements

  • ⚠️Requires Docker and Docker Compose to run the server.
  • ⚠️Primarily designed for use with Visual Studio Code's MCP client for interaction.
  • ⚠️External database connections (e.g., MySQL, PostgreSQL) require setting `SCHCRWLR_DATABASE_USER` and `SCHCRWLR_DATABASE_PASSWORD` environment variables, typically in a `.env` file.
Verified SafeView Analysis
The provided configuration files, primarily Docker Compose definitions, do not contain hardcoded secrets or obvious malicious patterns. Database credentials are explicitly handled as environment variables, which is a good security practice. The overall security profile largely depends on the underlying `schemacrawler/schemacrawler-ai` Docker image, which is not part of the provided source code for analysis.
Updated: 2026-01-04GitHub
32
2
Medium Cost
emilioSp icon
Sec9

Provides an MCP server and CLI tool for accessing iRacing racing simulation data API for AI assistant integration and direct command-line use.

Setup Requirements

  • ⚠️Requires an active iRacing account.
  • ⚠️Mandatory environment variables (COOKIE_JAR, EMAIL, and either PASSWORD or API_KEY) must be configured.
  • ⚠️An initial 'npm run login' command is required to authenticate and generate the cookie file for the first time.
Verified SafeView Analysis
The server uses environment variables for sensitive data (EMAIL, PASSWORD/API_KEY, COOKIE_JAR), avoiding hardcoding. It handles authentication cookies and refreshes them upon expiry. API calls are directed to the official iRacing API endpoints. No 'eval' or malicious patterns were identified. The primary security consideration is the local storage of the authentication cookie file, which should be secured on the host system.
Updated: 2025-11-26GitHub
32
2
High Cost
yiwenlu66 icon

mu-mcp

by yiwenlu66

Sec8

Enable chat with AI models via OpenRouter, facilitating multi-model conversations and persistent state for AI agents.

Setup Requirements

  • ⚠️Requires an OpenRouter API Key (paid service).
  • ⚠️Designed to integrate specifically with Claude Desktop as an MCP server, not a standalone application for direct user interaction.
  • ⚠️Requires `uv` (recommended) or a Python virtual environment and `pip` for dependency management.
Verified SafeView Analysis
The server does not use `eval` or exhibit obfuscation. Secrets are handled via environment variables. The primary potential risk involves file handling: the `chat` tool accepts absolute file paths (`files`, `images`) as arguments. While this is expected functionality for an agent to provide context, it implies trust in the calling MCP client (Claude Desktop) to provide valid, non-malicious, and appropriately sandboxed paths. Path traversal within the context of arbitrary user-provided file paths could lead to unintended file disclosure if the calling client were compromised, though the server itself doesn't actively sanitize these paths beyond basic file existence checks. Conversation storage uses UUIDs for file names, mitigating direct path traversal for its own storage.
Updated: 2026-01-19GitHub
32
2
High Cost
kengbailey icon

webintel-mcp

by kengbailey

Sec7

The WebIntel MCP server provides intelligent web search and content retrieval tools, including general web search, video search, web content fetching with pagination, YouTube transcription, and Reddit post/comment fetching, designed for AI assistants.

Setup Requirements

  • ⚠️Requires a running SearxNG instance configured for JSON output.
  • ⚠️Requires a running Speech-to-Text (STT) service (e.g., OpenAI compatible API) for YouTube transcription, which may incur costs.
  • ⚠️Docker is highly recommended for deployment, as setup instructions are tailored for it.
Verified SafeView Analysis
The server uses `os.getenv` for sensitive configurations like API keys and hostnames, which is good practice. Input validation is applied to tool parameters. However, the `WebContentFetcher` falls back to `Jina Reader API (r.jina.ai)` for some fetching failures or specific content types (e.g., PDFs). This means user-provided URLs and their content might be processed by a third-party service, which could have privacy and data leakage implications. Additionally, `yt-dlp` is configured with `nocheckcertificate: True`, which reduces the security of outbound connections by disabling SSL certificate verification, making it susceptible to man-in-the-middle attacks.
Updated: 2025-12-08GitHub
32
1
Medium Cost
Storm00212 icon

MCP-test

by Storm00212

Sec1

Provides a futuristic terminal-like interface for an MCP server to launch applications, perform RAG queries on class notes, and integrate with engineering software.

Setup Requirements

  • ⚠️Requires OpenAI API Key (Paid) for RAG functionality.
  • ⚠️Requires Chrome browser for web-based tools (open_chrome, open_github, open_youtube).
  • ⚠️Hardcoded Windows paths for Proteus, MATLAB, LTSpice, and Git Bash executables, limiting cross-platform compatibility and requiring specific software installations and versions.
Review RequiredView Analysis
CRITICAL security risks identified. The server heavily relies on `child_process.exec` to launch applications and execute commands (e.g., `open_proteus`, `open_matlab`, `execute_git_bash_command`). User-provided input for parameters like `filePath`, `args`, and `command` is directly concatenated into shell commands without apparent sanitization, making the server highly vulnerable to remote code execution (RCE) via command injection. Furthermore, the Electron frontend (electron-app/src/main.js) uses `nodeIntegration: true` and `contextIsolation: false`, which are deprecated and insecure Electron settings, giving the renderer process direct access to Node.js APIs and the ability to invoke highly privileged MCP tools with malicious arguments. This combination presents an extremely high security risk.
Updated: 2026-01-18GitHub
32
2
Medium Cost
Shaumik-Ashraf icon

mcp-fhir-patient-index

by Shaumik-Ashraf

Sec5

A Ruby on Rails Master Patient Index (MPI) server with a user-friendly UI, a conformant FHIR API (R4), and Model Context Protocol (MCP) support for LLM integration, focused on managing patient demographic data.

Setup Requirements

  • ⚠️Requires Ruby 3.3 to be installed.
  • ⚠️Requires Yarn 1.x for JavaScript dependencies.
  • ⚠️Requires regeneration of Rails credentials and SOC-II compliance for production use with real patient data.
Review RequiredView Analysis
The README explicitly warns that the application is 'not ready for real-patient data out of the box' and requires credential regeneration and SOC-II compliance for real-world use. It implements basic Rails security features like strong parameters and filtering sensitive logs (e.g., SSN). The `format_ssn` helper masks SSN in the UI based on a setting, but the raw data is stored. CSRF protection is skipped for the MCP API endpoint, which is common for API-only controllers. There are no obvious hardcoded secrets directly in the repository for critical configurations (it uses Rails credentials and environment variables for deployment). No 'eval' or malicious patterns are evident.
Updated: 2025-11-26GitHub
32
2
Low Cost
nico-martin icon

joke-mcp

by nico-martin

Sec8

Provides a Model Context Protocol (MCP) and REST API endpoint to fetch filtered jokes from JokeAPI.

Setup Requirements

  • ⚠️Requires PHP 8.0+.
  • ⚠️Dependencies must be installed via Composer (`composer install`).
  • ⚠️The 'data' directory and 'data/mcp_sessions.json' file must be writable by the web server process for session management.
Verified SafeView Analysis
Origin validation is implemented for server-side checks, although `Access-Control-Allow-Origin: *` is used for browser CORS. Session IDs are cryptographically secure. Relies on file-based session storage (`data/mcp_sessions.json`) which requires proper directory write permissions and could have concurrency issues under heavy load, but is generally safe for its intended use. External API calls are made with a timeout and user agent, and safe-mode is enforced for jokes.
Updated: 2025-11-24GitHub
32
1
Medium Cost
Code-MonkeyZhang icon

netease-mcp-server

by Code-MonkeyZhang

Sec8

Enables AI agents to control NetEase Cloud Music desktop application, manage music playback, and access user data like playlists and recommendations via its OpenAPI.

Setup Requirements

  • ⚠️Requires macOS or Windows operating system.
  • ⚠️NetEase Cloud Music desktop client is recommended for full playback control.
  • ⚠️Requires manual configuration of the absolute project path in `settings.json` for MCP client integration.
Verified SafeView Analysis
The server stores session cookies in a cleartext JSON file (`src/storage/cookies.json`) locally. While this is explicitly stated to be for local privacy, it means the file contains sensitive authentication data. If the local system is compromised or file permissions are lax, these cookies could be exposed. The server uses `pyncm` for API interactions and `subprocess.run` / `os.startfile` for opening local QR code images and URL schemes for playback, which are generally safe operations given controlled inputs. No 'eval' or other direct command injection vectors from user input were found.
Updated: 2026-01-19GitHub
32
2
Medium Cost
bit2me-dev icon

bit2me-mcp

by bit2me-dev

Sec9

Interact with the Bit2Me cryptocurrency exchange ecosystem to access real-time market data, manage wallets, execute trading operations, and query products like Earn (staking) and Loans via AI assistants.

Setup Requirements

  • ⚠️Requires Node.js v18 or higher.
  • ⚠️Requires a verified Bit2Me account and valid API Keys (BIT2ME_API_KEY, BIT2ME_API_SECRET) with appropriate permissions. Do NOT enable 'Withdrawal' permissions for API Keys.
  • ⚠️Manual configuration of `claude_desktop_config.json` is needed with absolute paths and environment variables.
  • ⚠️Interactions might be affected by Bit2Me API rate limits; the server includes automatic retries with exponential backoff, but excessive requests will still fail.
Verified SafeView Analysis
The server follows strong security practices. API keys are loaded from environment variables (or .env) and not hardcoded. Sensitive data is redacted from logs. API requests are signed using HMAC-SHA512 with SHA256 hashing. The `README.md` explicitly warns against enabling 'Withdrawal' permissions for API keys. It employs circuit breakers and rate limiters for resilience and abuse prevention. Pre-commit hooks include secret scanning (`gitleaks`) and `npm audit`. User input is validated to prevent common injection attacks.
Updated: 2026-01-19GitHub
32
2
Low Cost
seanivore icon

claud-coin

by seanivore

Sec9

To incentivize contributions and knowledge sharing within AI developer communities on the Solana blockchain, particularly through Model Context Protocol (MCP) integration, token rewards, and an achievement system.

Setup Requirements

  • ⚠️Requires Rust development environment
  • ⚠️Requires Solana CLI tools
  • ⚠️Requires understanding of Solana blockchain development
Verified SafeView Analysis
The Solana program follows standard security practices for its current development phase, including signer checks and rent exemption. The project's documentation (e.g., "RISK_ANALYSIS.md", "01_MCP_TRANSPORT_LAYER.md", "06_INFRASTRUCTURE_REQUIREMENTS.md") demonstrates a strong proactive approach to security with detailed plans for TLS, authentication, rate limiting, and comprehensive audits. Current Rust code includes `TODO`s for critical future features like full SPL Token integration and complete achievement claim validation, which will require careful implementation to maintain security. Minor potential for `u64` overflow in counters (`total_tool_uses`, `total_complexity`, `times_claimed`) is present, but given `u64`'s large range, it's highly improbable for typical usage.
Updated: 2025-11-29GitHub
PreviousPage 173 of 713Next