Stop Searching. Start Trusting.

The curated directory of MCP servers, vetted for security, efficiency, and quality.

Browse DirectoryWhy Us?

Tired of the MCP "Marketplace" Chaos?

We built MCPScout.ai to solve the ecosystems biggest pain points.

No Insecure Dumps

We manually analyze every server for basic security flaws.

Easy Setup

Our gotcha notes warn you about complex setups.

Avoid "Token Hogs"

We estimate token costs for cost-effective agents.

Products, Not Demos

We filter out "Hello World" demos.

CATEGORIES:
SORT:

Vetted Servers(8554)

30
1
High Cost
joe-watkins icon

axecore-mcp-server

by joe-watkins

Sec8

Performs automated accessibility testing on URLs or raw HTML content using axe-core and IBM Equal Access engines, supporting multi-screen analysis and configurable WCAG levels.

Setup Requirements

  • ⚠️Requires Node.js (version 18 or higher is recommended by dependencies).
  • ⚠️Relies on Playwright to automatically download and manage Chromium browser binaries during installation and runtime.
Verified SafeView Analysis
The server uses Playwright to launch a headless browser for testing arbitrary URLs or HTML content. While Playwright provides process isolation, interacting with unverified external web content carries inherent risks of browser-level exploits or resource exhaustion (mitigated by navigation timeouts). The server's own code does not show signs of hardcoded secrets, `eval()` of untrusted input, or direct command injection vulnerabilities. Configuration is managed securely via environment variables.
Updated: 2025-12-07GitHub
30
1
Low Cost
nentgroup icon

viaplay-mcp-test

by nentgroup

Sec8

This MCP server enables AI assistants to search the Viaplay catalog for movies and series and retrieve device key information.

Setup Requirements

  • ⚠️Node.js version 22.14.0 or higher is required.
  • ⚠️The 'run_command' provided in 'mcp.json' uses an absolute path ('/Users/raphport/Documents/GitHub/viaplay-mcp/dist/index.js') which must be updated by the user to reflect their local repository location.
Verified SafeView Analysis
The server code is small and clear, using Zod for parameter validation and making HTTP requests to a specific, known third-party API. No 'eval' or obfuscation found. No hardcoded sensitive secrets are present. The only network risk involves standard API calls to Viaplay's public content API.
Updated: 2026-01-19GitHub
30
1
Low Cost
imnotowann icon

Windsurf-Tool

by imnotowann

Sec4

Manages Windsurf accounts, including batch registration, automated switching, and account pool management.

Setup Requirements

  • ⚠️Requires Cloudflare Email Routing to be configured for custom domain email reception.
  • ⚠️IMAP email configuration requires specific server details and often app-specific passwords/authorization codes for common providers, which users need to generate outside the application.
  • ⚠️On Windows, `robotjs` (for keyboard automation) requires Visual Studio Build Tools and Python for compilation, which can be a significant setup hurdle.
  • ⚠️On macOS, the application is unsigned and requires a security bypass (right-click 'Open' or a terminal command) on first run.
Review RequiredView Analysis
The `EmailReceiver` module uses `tlsOptions: { rejectUnauthorized: false }` when connecting to IMAP servers, which disables SSL/TLS certificate validation. This is a critical security vulnerability that makes IMAP connections susceptible to Man-in-the-Middle (MITM) attacks, allowing an attacker to intercept and read sensitive email credentials and verification codes. Additionally, the application utilizes `child_process.exec` (including PowerShell commands on Windows and AppleScript on macOS) and `robotjs` for system-level automation (e.g., closing applications, deleting configuration files, simulating keyboard input). While intended for the application's stated purpose, this level of control inherently carries a high risk if the application itself were compromised or if malicious input were somehow introduced, potentially leading to unauthorized system manipulation or data loss. There are no obvious hardcoded secrets or direct obfuscation found.
Updated: 2025-12-15GitHub
30
1
High Cost
ariunbolor icon

nsaf-mcp-server

by ariunbolor

Sec3

The NSAF Complete MCP Server implements a Neuro-Symbolic Autonomy Framework, exposing 19 tools for AI assistants to manage complex multi-objective tasks, evolve specialized AI agents, project future intentions, manage symbolic memory, synchronize human-AI cognitive states, integrate foundation models, and perform real-time system analytics, potentially with quantum enhancement.

Setup Requirements

  • ⚠️Requires OpenAI API Key (Paid) and potentially Google Gemini API Key for Foundation Models. These are configured via environment variables.
  • ⚠️Critical environment variables (e.g., `AGENT_BUILDER_SECURITY_JWT_SECRET_KEY`, `ADMIN_PASSWORD`) must be set to override insecure hardcoded defaults, especially for JWT secret and admin credentials.
  • ⚠️Marketplace and user data defaults to local JSON file storage (`data/marketplace/*.json`, `data/users.json`), which is not scalable or secure for production and requires proper database setup (e.g., PostgreSQL, Redis).
  • ⚠️Uses Qiskit for quantum symbolic computing and TensorFlow for SCMA, which may require specific setup or dependencies.
  • ⚠️The server relies on FastAPI and Uvicorn; while Python packages, they are core framework dependencies.
Review RequiredView Analysis
The server has critical security vulnerabilities: it uses hardcoded default values for `JWT_SECRET_KEY` ('supersecretkey') and `admin` credentials if corresponding environment variables (`AGENT_BUILDER_SECURITY_JWT_SECRET_KEY`, `ADMIN_USERNAME`, `ADMIN_PASSWORD`) are not set. The agent marketplace and user data are stored in local JSON files (`data/marketplace/*.json`, `data/users.json`), which is highly insecure and unsuitable for a multi-user or production environment. System maintenance skills include `subprocess` calls (e.g., for system info, software management) which, while currently mocked in snippets, pose a risk if not rigorously sanitized and executed with least privilege.
Updated: 2025-11-26GitHub
30
1
Medium Cost
jussker icon
Sec8

The server provides access to Context7 API for searching and downloading library documentation and source code repositories, and managing them locally.

Setup Requirements

  • ⚠️Requires Python 3.10+.
  • ⚠️Relies on the external Context7 API (context7.com) which may have its own usage limits or costs.
  • ⚠️The project explicitly states 'as-is' with 'no maintenance commitment', which is a significant factor for production use.
  • ⚠️CLIENT_IP_ENCRYPTION_KEY should be set to a unique, secret value in production to ensure client IP obfuscation is effective beyond simple obscurity.
Verified SafeView Analysis
The default CLIENT_IP_ENCRYPTION_KEY is hardcoded and publicly available, meaning IP addresses 'encrypted' with this default key are not truly confidential. While configurable, users should be aware of this for production environments. The server executes `git clone` commands based on repository URLs extracted from documentation fetched from an external API (context7.com), which introduces a trust dependency on the external API not providing malicious URLs. File system operations are generally scoped to a specific `.kms/context7/km-base` directory.
Updated: 2026-01-19GitHub
30
1
High Cost
jordnlvr icon
Sec4

A self-learning Model Context Protocol (MCP) server providing expert-level Mendix development assistance, including knowledge base queries, project and theme analysis, code generation patterns, and troubleshooting, with support for semantic search and auto-harvesting.

Setup Requirements

  • ⚠️Requires OpenAI or Azure OpenAI API Key (Paid) for high-quality vector embeddings, falls back to local TF-IDF if not configured.
  • ⚠️Requires Pinecone API Key (Free tier available, but usage costs apply) for semantic search.
  • ⚠️Requires Supabase account (Free tier available) for persistent cloud knowledge storage.
  • ⚠️Project analysis (`/analyze`, `/analyze-theme`) functionality is disabled in cloud deployments due to requiring local filesystem access to `.mpr` files or project directories.
  • ⚠️The `SyncReminder` module relies on `git` being installed and configured locally for repository synchronization tasks.
Review RequiredView Analysis
The project includes an obfuscated, hardcoded Pinecone API key in `src/vector/VectorStore.js` as a fallback if environment variables are not set. This is a critical security vulnerability as it could expose access to a shared Pinecone index. While `flyio-secrets.sh` indicates proper environment variable usage for deployment, a local run without explicit configuration would use the hardcoded key. The `SyncReminder` module uses `child_process.execSync` for git operations, which carries inherent risks if not carefully managed, although its current use for self-repo management appears controlled. Public REST and SSE endpoints lack user-level authentication, relying on rate-limiting for abuse prevention, which is noted as a future improvement in the `ARCHITECTURE.md`.
Updated: 2026-01-19GitHub
30
1
Low Cost
woonstadrotterdam icon

mcp-monumenten

by woonstadrotterdam

Sec9

Enables AI assistants to check monumental status of Dutch addresses.

Setup Requirements

  • ⚠️Requires Python 3.10 or higher.
Verified SafeView Analysis
The server uses f-strings to build SPARQL queries for the external Kadaster BAG LV endpoint. User inputs for street, city, postal code, house letter, and house suffix are properly enclosed in double quotes within the SPARQL query, which effectively mitigates classical SPARQL injection risks by treating inputs as literal strings. No 'eval' or other direct command execution patterns are found. The server relies on external Kadaster and RCE APIs for data, whose security is external to this codebase. No hardcoded secrets are evident, and `dotenv` is used for environment variable loading, suggesting sensitive data should be managed externally.
Updated: 2025-11-30GitHub
30
1
Low Cost
Sunako26 icon
Sec7

Manages Docker, Podman, and Docker Swarm containers via a centralized Multi-Agent Communication Protocol (MCP) server for Agentic AI.

Setup Requirements

  • ⚠️Requires Docker or Podman daemon to be installed and running on the host system.
  • ⚠️Python 3.10 or higher is required.
  • ⚠️If using Podman on Windows/WSL2, 'podman machine' must be running and accessible.
Verified SafeView Analysis
The server allows external agents to execute powerful container management commands, including running arbitrary images and executing commands inside containers. While the code itself does not show obvious internal vulnerabilities like 'eval' or hardcoded secrets, the inherent capabilities grant high privileges. If the MCP server or an agent connected to it is compromised, it could lead to significant control over the host's container environment. Deployment security (network isolation, trusted agents) is critical.
Updated: 2026-01-19GitHub
30
1
Medium Cost
David200308 icon
Sec8

Provides cryptocurrency price checking across multiple exchanges and sends email alerts.

Setup Requirements

  • ⚠️Requires Node.js >=18.0.0 and pnpm >=10.0.0.
  • ⚠️Requires a Resend API Key for email functionality (RESEND_API_KEY).
  • ⚠️Optional API keys (COINMARKETCAP_API_KEY, MORALIS_API_KEY, ETHERSCAN_API_KEY) can enhance token address resolution but are not strictly required for core functionality.
Verified SafeView Analysis
API keys for external services (Resend, CoinMarketCap, Moralis, Etherscan) are correctly loaded from environment variables or a configuration file, not hardcoded. The server can run as an HTTP service using Fastify, which is a robust framework. Outbound network requests are made to various crypto data providers and blockchain RPCs. A potential minor risk is the `convertMarkdownToHtml` function in `EmailService`: if the `content` or `additionalInfo` parameters for email templates were to receive unsanitized, malicious markdown/HTML directly from an untrusted source (e.g., a vulnerable LLM output), it could potentially lead to XSS vulnerabilities in the recipient's email client. However, this is a common risk with HTML templating and requires careful input handling by the calling agent.
Updated: 2025-12-05GitHub
30
1
High Cost
wolfeidau icon

mcp-evals

by wolfeidau

Sec7

A Go library and CLI for evaluating Model Context Protocol (MCP) servers using Claude, employing an agentic evaluation loop and detailed grading across multiple dimensions.

Setup Requirements

  • ⚠️Requires an Anthropic API Key (Paid Service) for LLM interactions.
  • ⚠️Requires a Go development environment (Go 1.25+) to build from source, or relies on `install.sh` for pre-built binaries.
  • ⚠️Requires a functional target MCP server (either a local executable or a network service) that the tool will connect to and evaluate. This target server's dependencies (e.g., Node.js for `npx @modelcontextprotocol/server-filesystem`) must also be met.
Verified SafeView Analysis
The tool is designed to execute external commands specified in its configuration files (e.g., `mcp_server.command` and `mcp_server.args`). While this is necessary functionality for evaluating MCP servers, it means that if the configuration file is untrusted, the `mcp-evals` tool could execute arbitrary malicious commands on the host system. The `install.sh` script handles binary downloads and checksum verification appropriately. No hardcoded secrets, obfuscation, or direct shell `eval` calls are found in the Go source code.
Updated: 2026-01-19GitHub
30
1
Medium Cost
danielrosehill icon

MCP-Server-Ideas

by danielrosehill

Sec9

Planning and documentation for Model Context Protocol (MCP) servers to extend AI capabilities by integrating with external APIs such as Green Invoice for invoicing and Homebox for inventory management.

Setup Requirements

  • ⚠️Requires API keys for Green Invoice API (Paid/Account needed)
  • ⚠️Requires API keys for Homebox API (Paid/Account needed)
Verified SafeView Analysis
The repository consists primarily of planning documents and an OpenAPI schema, not executable code. Therefore, there are no direct runtime security risks in the provided source. Implementation notes within the planning documents mention the need for robust data privacy, security, and API key management, indicating an awareness of security for future development.
Updated: 2025-12-02GitHub
30
1
Medium Cost
ScientiaCapital icon

unsloth-mcp-server

by ScientiaCapital

Sec8

An MCP server enabling Claude Code users to orchestrate LLM fine-tuning workflows, manage GPU resources, and generate training data, leveraging Unsloth's performance optimizations.

Setup Requirements

  • ⚠️Requires Python 3.10-3.12 (not 3.13).
Verified SafeView Analysis
The server implements comprehensive security measures including input validation, path traversal prevention, and Python script sanitization against dangerous patterns (e.g., 'os.system', 'eval', 'subprocess', file writes). Resource limits and rate limiting are in place. Secrets are handled via environment variables. Detected dangerous patterns in Python scripts are currently logged as warnings, not errors, which could be tightened for maximum security in a strict production environment.
Updated: 2026-01-18GitHub
PreviousPage 215 of 713Next