Stop Searching. Start Trusting.

The curated directory of MCP servers, vetted for security, efficiency, and quality.

Browse DirectoryWhy Us?

Tired of the MCP "Marketplace" Chaos?

We built MCPScout.ai to solve the ecosystems biggest pain points.

No Insecure Dumps

We manually analyze every server for basic security flaws.

Easy Setup

Our gotcha notes warn you about complex setups.

Avoid "Token Hogs"

We estimate token costs for cost-effective agents.

Products, Not Demos

We filter out "Hello World" demos.

CATEGORIES:
SORT:

Vetted Servers(8554)

0
0
Low Cost
sauronx2 icon
Sec8

Orchestrates multiple AI agents in parallel using the Model Context Protocol (MCP) for Claude Code environments.

Setup Requirements

  • ⚠️Requires Docker and Docker Compose for setup and execution.
  • ⚠️Requires Claude Code to connect and utilize its features.
Verified SafeView Analysis
The provided source code (docker-compose.yml and README.md) does not contain obvious security vulnerabilities like hardcoded secrets, 'eval' usage, or obfuscation. The server exposes port 8080 via SSE, which is a common communication method. Data persistence is handled via Docker volumes, which is good practice for containerized applications. However, the internal implementation of `claude-flow@alpha` and `mcp-proxy` Node.js packages, which are critical components, is not available for review. The security assessment is limited to the provided configuration and documentation.
Updated: 2025-12-10GitHub
0
0
Low Cost
relyky icon

mcp-demo

by relyky

Sec10

This project is a demonstration of an MCP (Model Context Protocol) server built using the FastMCP framework, providing tools and resources for AI models to interact with.

Setup Requirements

  • ⚠️Requires Python 3.12+
  • ⚠️Requires the 'uv' package manager for recommended setup and execution
Verified SafeView Analysis
The provided source code is simple and demonstrates basic arithmetic and string manipulation. No dangerous functions like 'eval' or 'exec' are used. There are no hardcoded secrets or network vulnerabilities present in the given snippets. The f-string usage in 'get_greeting' is safe within the server's context and does not introduce direct server-side vulnerabilities.
Updated: 2025-11-19GitHub
0
0
Medium Cost
HJeon139 icon
Sec9

An MCP server designed to manage and store contextual information (markdown files with metadata) for AI agents, supporting CRUD operations and text search.

Setup Requirements

  • ⚠️Python 3.11 or higher is required.
  • ⚠️Requires manual migration or configuration update if currently using the old `.out_of_context` storage path (default changed to `out_of_context`). Automatic migration only works if no custom `OUT_OF_CONTEXT_STORAGE_PATH` is set.
  • ⚠️Future semantic search features will require additional dependencies like `sentence-transformers` and `torch`, resulting in a ~500MB download on first use.
Verified SafeView Analysis
The system is designed to be self-contained and uses STDIO for communication, significantly limiting network attack vectors. Input validation for context names (`_validate_name` in `mdc_storage.py`) prevents basic path traversal vulnerabilities. No `eval()` or hardcoded secrets were found in the provided source code. Configuration is handled via environment variables or a configuration file, not directly in code. The core functionality involves direct file system manipulation by the server process, implying the agent environment is trusted.
Updated: 2025-12-18GitHub
0
0
Low Cost
NAITIVEAI icon
Sec6

Deploys a remote Model Context Protocol (MCP) server on Cloudflare Workers, exposing basic calculator tools without requiring authentication, intended for demonstration and integration with MCP clients like Cloudflare AI Playground or Claude Desktop.

Setup Requirements

  • ⚠️Requires a Cloudflare Workers account for deployment.
  • ⚠️No authentication is implemented, making it publicly accessible to anyone with the URL.
  • ⚠️Requires `npm` and `wrangler` CLI to set up and deploy.
Verified SafeView Analysis
The server is explicitly designed to be 'authless' for demonstration purposes. While the arithmetic tools themselves use Zod for input validation (mitigating input injection for numeric inputs), the absence of any authentication mechanism means anyone with the URL can access and invoke the calculator functions. This is a critical security vulnerability for any non-public facing or sensitive application. No hardcoded secrets were found in the provided code snippets. Use with caution and only for its intended demo purpose.
Updated: 2025-11-25GitHub
0
0
Medium Cost
NickFlach icon

PFORK_MCP

by NickFlach

Sec8

Unified API gateway for the Pitchforks ecosystem, enabling AI agents and other clients to interact with decentralized tools for peaceful resistance on Neo X.

Setup Requirements

  • ⚠️Mandatory Environment Variables: Requires `SESSION_SECRET` for MCP server API key authentication, and `DEVELOPER_PRIVATE_KEY` and `DEVELOPER_ADDRESS` for wallet-based authentication, which are critical for write operations. Several API URLs (`PROTOCOL_API_URL`, `DEX_API_URL`, `FERRY_API_URL`, `ANALYST_API_URL`, `APP_API_URL`) and blockchain RPC endpoints (`NEO_X_RPC_URL`, `ETHEREUM_RPC_URL`) are also needed for full functionality.
  • ⚠️Placeholder API Integration: Most high-level tools (`analyst-get-overview`, `dex-get-info`, `protocol-get-info`, etc.) currently return static placeholder data. Full, live functionality requires active connections to the respective Pitchforks ecosystem APIs and backend development on those sites as outlined in `PITCHFORKS_MCP_RECOMMENDATIONS.md`.
  • ⚠️Monorepo Dependencies: The top-level `package.json` references several `@pitchfork` packages using `file:../@pitchfork/shared/packages/...`. This indicates it's part of a larger monorepo. Running this server standalone may require manually setting up or publishing these shared packages.
Verified SafeView Analysis
The server implements robust multi-layer authentication (wallet signatures and API keys), includes input validation using Joi, uses nonce management to prevent replay attacks, and configures rate limiting and standard security headers (Helmet, CORS). TypeScript strict mode enhances code quality and reduces common vulnerabilities. However, the `AuthMiddleware`'s reliance on `DEVELOPER_PRIVATE_KEY` directly from environment variables for server-side signing is a significant risk; in a production environment, this should be replaced with a secure key management system (e.g., KMS). Additionally, the initial `xmcp` tools return placeholder data, meaning the security of actual integrations with live Pitchforks APIs (when implemented) will require further review.
Updated: 2025-11-26GitHub
0
0
Medium Cost
isakskogstad icon

blocket-tradera-mcp

by isakskogstad

Sec7

MCP server for Swedish marketplaces Blocket and Tradera, enabling AI assistants to search listings, compare prices, and browse items.

Setup Requirements

  • ⚠️Requires personal Tradera API credentials (TRADERA_APP_ID, TRADERA_APP_KEY) for full functionality; otherwise, only Blocket searches will work.
  • ⚠️Requires Node.js version 18 or higher.
Verified SafeView Analysis
The TRADERA_APP_ID and TRADERA_APP_KEY environment variables have default values hardcoded in src/clients/tradera-client.ts. While likely intended for development, this poses a security risk if not overridden by user-provided credentials, as it could lead to shared rate limits or potential credential compromise if these defaults are widely used or become public knowledge. The README explicitly advises users to obtain their own API credentials.
Updated: 2025-12-26GitHub
0
0
Medium Cost
yo-mi2027 icon

mcp_server

by yo-mi2027

Sec9

Enables LLMs (specifically Claude) to interact with and retrieve information from structured local manuals via a hierarchical reasoning RAG workflow.

Setup Requirements

  • ⚠️Requires Docker Desktop (or compatible engine) for the FastAPI backend.
  • ⚠️Requires Node.js 18+ and npm (or compatible tool) for the MCP client.
  • ⚠️Users must manually create and populate the 'manuals/' directory with structured content (e.g., '00_目次.json' and text files).
Verified SafeView Analysis
The system is designed for local operation with the FastAPI backend bound to `127.0.0.1`. CORS is configured for local access. Regex search functionality includes a fallback mechanism for invalid patterns, preventing potential injection issues. No hardcoded secrets were found, and there's no use of `eval` or similar dangerous dynamic code execution. Overall, it's very safe for its intended local-only use, but like any local server, its security is tied to the host machine's integrity.
Updated: 2026-01-06GitHub
0
0
Low Cost
KlenLucas icon

ai-test-generator

by KlenLucas

Sec8

Automatically generate Playwright test code from user stories using Claude AI.

Setup Requirements

  • ⚠️Requires Anthropic API Key (Paid)
  • ⚠️Requires Playwright browsers to be installed (`playwright install`)
Verified SafeView Analysis
The application properly uses environment variables for API keys, avoiding hardcoded secrets. It includes a validation step for generated code, which helps mitigate risks associated with AI hallucinations or unexpected code. The primary security consideration is ensuring the generated Playwright test code, if run in an unisolated environment, does not perform unintended actions. However, the system's design with a QA engineer persona prompt and validators aims to produce safe, functional tests.
Updated: 2026-01-19GitHub
0
0
Low Cost
marco110 icon
Sec3

Provides real-time vehicle data to an AI agent (Xiaozhi) via the Model Context Protocol (MCP) using a Node.js server.

Setup Requirements

  • ⚠️Hardcoded API login credentials (`loginName`, `loginPwd`) must be replaced with secure environment variables or a secrets management solution.
  • ⚠️A `token.js` file is required in the project root to provide the MCP endpoint token, and its content is not provided in the source.
  • ⚠️The external API endpoint `https://gateway-test.wuzheng.com.cn` is a 'test' gateway, which might have access restrictions or be unstable.
Review RequiredView Analysis
CRITICAL: The `getToken` function in `mcp-server.js` contains hardcoded login credentials (`loginName`, `loginPwd`) for an external API. The `AUTH_TOKEN` in `API_CONFIG` has a hardcoded default value ('your-authorization-token') if the `AUTH_TOKEN` environment variable is not set. The `index.js` file imports a token from `./token.js` which likely contains another hardcoded secret, though the file content isn't provided. These hardcoded secrets pose significant security risks.
Updated: 2025-12-06GitHub
0
0
Medium Cost
abumalick icon

openapi-mcp

by abumalick

Sec8

Enables LLMs to explore OpenAPI specifications by loading, listing, and detailing API endpoints, parameters, and schemas.

Setup Requirements

  • ⚠️Requires Node.js 18+
  • ⚠️Only supports OpenAPI 3.x specifications (not Swagger 2.0)
  • ⚠️Potential for Server-Side Request Forgery (SSRF) if openapi_load is used with untrusted URLs in an insecure environment.
Verified SafeView Analysis
The server can fetch OpenAPI specifications from arbitrary URLs provided by the LLM, posing a potential Server-Side Request Forgery (SSRF) risk if not properly isolated or access-controlled in its deployment environment. Schemas are truncated to prevent excessive output, which also helps mitigate against very large (potentially malicious) schema definitions. No direct code execution vulnerabilities or hardcoded secrets were found.
Updated: 2025-11-30GitHub
0
0
Medium Cost
glasses666 icon
Sec8

A Python-based MCP server for image recognition leveraging various large language models to describe images or answer questions about them.

Setup Requirements

  • ⚠️Requires API Keys for commercial LLMs (Google Gemini, OpenAI, Alibaba Cloud DashScope, Volcengine Ark) which may incur costs.
  • ⚠️Requires Python 3.10 or higher.
  • ⚠️Manual configuration of API keys in the `.env` file is necessary after setup.
  • ⚠️The server processes local file paths as image input; ensure proper access controls in a shared environment.
Verified SafeView Analysis
The server uses `os.getenv` for API keys, which is good practice. Image data can be sourced from URLs, Base64 strings, or local file paths. While convenient, allowing arbitrary local file paths as image input could pose a local file disclosure risk if the server is exposed to untrusted users without proper input validation or sandboxing. However, for its intended use as a local MCP server for agents, this risk is mitigated. No 'eval' or direct shell command execution found.
Updated: 2025-12-03GitHub
0
0
Medium Cost
htooayelwinict icon

open-bridge

by htooayelwinict

Sec9

A lightweight MCP server enabling AI coding assistants to interact with the OpenRouter API for various coding tasks.

Setup Requirements

  • ⚠️Requires an OpenRouter API Key, which typically involves usage-based costs from OpenRouter.
  • ⚠️Requires Python 3.10 or newer.
  • ⚠️The recommended installation method uses 'uvx', which might require an additional installation step for users unfamiliar with it.
Verified SafeView Analysis
The code avoids direct use of 'eval' or 'exec'. API keys are loaded from environment variables, which is a secure practice. It uses 'httpx' for async network calls, a standard and reliable library. The 'directory' parameter is only used for validation with 'os.path.isdir' and for metadata, not for command execution, mitigating path traversal risks. JSON extraction uses regex and 'json.loads' with error handling, preventing code injection through malformed JSON. The stateless nature further reduces potential attack surfaces.
Updated: 2026-01-18GitHub
PreviousPage 362 of 713Next