Stop Searching. Start Trusting.

The curated directory of MCP servers, vetted for security, efficiency, and quality.

Browse DirectoryWhy Us?

Tired of the MCP "Marketplace" Chaos?

We built MCPScout.ai to solve the ecosystems biggest pain points.

No Insecure Dumps

We manually analyze every server for basic security flaws.

Easy Setup

Our gotcha notes warn you about complex setups.

Avoid "Token Hogs"

We estimate token costs for cost-effective agents.

Products, Not Demos

We filter out "Hello World" demos.

CATEGORIES:
SORT:

Vetted Servers(8554)

0
0
High Cost
maan314 icon
Sec2

Provides a command-line interface and an unauthenticated HTTP API server for interacting with Google's Gemini generative AI model, enabling chat functionalities and dynamic configuration of the API key and model.

Setup Requirements

  • ⚠️Requires Node.js runtime.
  • ⚠️Requires `npm install` for dependencies.
  • ⚠️Requires a Google Gemini API Key (paid service).
Review RequiredView Analysis
The server features unauthenticated HTTP POST endpoints (`/set-api-key`, `/set-model`) that allow any client to set the Google Gemini API key and model used by the server. If this server is exposed to any network, an attacker can easily hijack the Gemini API key, leading to unauthorized usage and potential billing issues. The API key is persisted to a local `config.json` file, compounding the risk.
Updated: 2025-12-03GitHub
0
0
Low Cost
Hrishikesh-Gaikwad-GG icon

test_remote_MCP_server

by Hrishikesh-Gaikwad-GG

Sec10

Provides a simple calculator and random number generation service via an MCP API.

Setup Requirements

  • ⚠️Python 3.12+ required.
Verified SafeView Analysis
The provided source code is simple and does not contain any obvious security vulnerabilities like 'eval', 'exec', hardcoded secrets, or unvalidated external input processing. The exposed functions ('add', 'random_number', 'server_info') handle only basic integer inputs or return static/generated data, minimizing attack surface. No external dependencies beyond the standard library and FastMCP are used in a way that introduces obvious risk.
Updated: 2025-11-29GitHub
0
0
Low Cost
zero-to-prod icon

cronitor-mcp

by zero-to-prod

Sec9

Serves as a Multi-Cloud Platform (MCP) server for integrating with Cronitor's monitoring and observability API, allowing filtering and pagination of issues.

Setup Requirements

  • ⚠️Requires PHP 8.4 or higher.
  • ⚠️The CRONITOR_API_KEY environment variable must be set for the server to function.
  • ⚠️Requires 'json' and 'curl' PHP extensions.
  • ⚠️Docker is the recommended deployment method for ease of setup.
Verified SafeView Analysis
The server retrieves the CRONITOR_API_KEY from environment variables, avoiding hardcoded secrets. All external API calls are directed to a fixed domain (cronitor.io) via cURL, using basic authentication. Input parameters for the 'issues' tool are validated with schema attributes (e.g., patterns, min/max lengths, enums) to prevent injection and ensure data integrity. Error handling for cURL requests and JSON decoding is present. The `APP_DEBUG` environment variable controls the verbosity of logging to `error_log` which is good practice for production. Session data is stored locally in a file-based store, which implies proper directory permissions are needed in deployment, but this is a common operational concern and not a code vulnerability itself.
Updated: 2026-01-19GitHub
0
0
High Cost
manvkaur icon
Sec9

Provides ready-to-use Azure Functions templates across multiple languages for rapid development and deployment through an MCP client.

Setup Requirements

  • ⚠️Requires Node.js 18+ (LTS recommended)
Verified SafeView Analysis
The server implements path traversal protection when retrieving specific files to prevent unauthorized file access. It communicates via standard I/O (stdio) with an MCP client, which is a secure local inter-process communication method. No 'eval' or obfuscation is used. While template files contain placeholders for connection strings (e.g., "<Your-CosmosDB-Connection>"), these are for the generated functions and not hardcoded secrets used by the MCP server itself.
Updated: 2025-11-19GitHub
0
0
Medium Cost
vjgit-369 icon
Sec8

The server enables AI assistants to programmatically interact with Apache JMeter for comprehensive performance testing, including test execution, analysis, report generation, and test plan creation.

Setup Requirements

  • ⚠️Requires Node.js version 18 or higher to be installed.
  • ⚠️Requires Apache JMeter 5.0 or higher to be installed and accessible.
  • ⚠️The `JMETER_HOME` environment variable must be explicitly set to the JMeter installation directory.
Verified SafeView Analysis
The server utilizes `child_process.spawn` and `execFile` with array arguments for executing JMeter, which is the safest method to run external commands programmatically as it avoids shell interpretation. Environment variables `JMETER_HOME` and `JMETER_BIN` are read, preventing hardcoded secrets. The primary security consideration arises if an attacker can control the *values* of paths (`testPlan`, `resultsFile`, `reportDir`) or properties passed to JMeter, as JMeter itself would then process these potentially malicious inputs. However, the server's code itself mitigates direct command injection risk from its side.
Updated: 2025-12-05GitHub
0
0
High Cost
CengSin icon

mcp-server

by CengSin

Sec5

An AI-powered RAG (Retrieval Augmented Generation) system for financial news analysis and user management, leveraging vector search, relational database queries, and LLM orchestration through a tool-calling framework.

Setup Requirements

  • ⚠️Requires an OpenAI (or compatible service like OpenRouter.ai) API key, which incurs costs for embeddings and chat completions.
  • ⚠️Requires a running Qdrant vector database instance for semantic search capabilities.
  • ⚠️Requires a running MySQL database instance with specific schemas for content messages, articles, and users.
  • ⚠️Requires a running MinIO object storage instance for file generation and storage.
  • ⚠️A local HTTP/HTTPS proxy might be required if `HTTP_PROXY` and `HTTPS_PROXY` environment variables are set, which is done by default in `main.go` pointing to `127.0.0.1:7890`.
Review RequiredView Analysis
The `config/config.yaml` provides default credentials for MySQL (root:rootpassword) and MinIO (admin:password). These are highly insecure and must be changed for any production or even non-local deployment. The server listens on port 8085 (potentially 0.0.0.0:8085) without visible authentication or authorization mechanisms in the provided code, posing a risk if exposed publicly. HTTP/HTTPS proxies are explicitly set from environment variables which, if misconfigured or pointing to untrusted proxies, could introduce risks. No direct `eval` or command injection vulnerabilities were found.
Updated: 2026-01-05GitHub
0
0
Low Cost
drkhannah icon

mcp-chess-server

by drkhannah

Sec10

Provides an MCP server to interact with the Chess.com API, offering tools to retrieve public player profiles and statistics by username.

Setup Requirements

  • ⚠️Requires Python 3.12 or newer.
  • ⚠️Requires 'mcp[cli]' and 'requests' dependencies to be installed.
Verified SafeView Analysis
The code makes standard HTTP GET requests to the public Chess.com API. It uses 'requests.raise_for_status()' for error handling and does not expose any sensitive information or use dangerous functions like 'eval'. No apparent network risks or hardcoded secrets.
Updated: 2025-11-28GitHub
0
0
Medium Cost
nuin icon
Sec9

Provides a Model Context Protocol (MCP) server for accessing genomics data from the Alliance of Genome Resources across multiple model organisms.

Setup Requirements

  • ⚠️Requires Node.js 18+ to run directly.
  • ⚠️Requires specific JSON configuration in MCP clients (e.g., Claude Desktop) for integration.
  • ⚠️Relies on external Alliance of Genome Resources APIs, which are subject to their availability and stability.
Verified SafeView Analysis
The server uses Zod for robust input validation for all tool arguments. It interacts with public, read-only external APIs (Alliance of Genome Resources). No hardcoded secrets were found in the provided source code. Docker deployments are configured with strong security hardening (read-only filesystem, no-new-privileges). The `CHANGELOG.md` mentions query and error message sanitization, although explicit implementation details for all types of injections beyond Zod validation were not fully visible in the truncated `client.ts`. As it primarily makes HTTP requests and does not execute arbitrary code or interact with local databases based on user input, the risk is minimal.
Updated: 2025-12-16GitHub
0
0
Low Cost
bernardpacis icon

bernardpacis.github.io

by bernardpacis

Sec5

Scaffolds a production-ready Model Context Protocol (MCP) server quickly with minimal configuration.

Setup Requirements

  • ⚠️Requires Node.js version 14 or later.
  • ⚠️Requires manual download and installation of the kit from GitHub releases (not directly via npm/npx for the kit itself).
  • ⚠️The 'npm run start' command is for running the scaffolded MCP server, implying a previous setup/generation step by the kit.
Review RequiredView Analysis
The provided SOURCE CODE is an `index.md` documentation file describing a server scaffolding kit. It does not contain executable code, making a direct security audit of the server or kit impossible. No security risks like 'eval', obfuscation, network risks, or hardcoded secrets can be identified from this documentation alone.
Updated: 2026-01-18GitHub
0
0
Medium Cost
lessuseless-systems icon

circular-mcp

by lessuseless-systems

Sec3

Provides a set of tools for an MCP-compatible server to interact with the Circular Protocol Blockchain, enabling AI agents to query and perform blockchain operations.

Setup Requirements

  • ⚠️Requires Node.js v20+ (v18+ minimum) to avoid `fetch` API polyfill issues.
  • ⚠️Requires setting API keys in `.env` (e.g., `ACME_API_KEY`) as per `README`, but the provided tool code snippets for Circular Protocol API calls do not currently integrate these environment variables, potentially leading to authentication failures or insecure requests.
Review RequiredView Analysis
The server's tools make direct HTTP POST requests to `https://nag.circularlabs.io/NAG.php` for all blockchain interactions. A critical security concern is the discrepancy between the `README` and the actual source code: the `README` explicitly states that environment variables (e.g., `ACME_API_KEY`) are used for authentication within generated tools, but the provided tool code snippets (e.g., `get-domain.js`, `send-transaction.js`) do not incorporate `process.env` variables into their requests. This means sensitive operations like `send_transaction` are sent without any explicit API key in the headers from the client-side tool, which is a major functional and security gap if the `nag.circularlabs.io` API requires authentication. Additionally, some tools (`get-transaction-by-id`, `get-blockchains`, `get-transaction-by-node`) explicitly set a `timestamp` header to an empty string (`''`), which could cause API request failures if the backend expects a valid timestamp format for security or request validation. The entire system relies on a single external API endpoint (`nag.circularlabs.io`), introducing a single point of failure.
Updated: 2025-11-26GitHub
0
0
Low Cost
eatikrh icon
Sec6

A production-ready template for developing Model Context Protocol (MCP) servers, enabling AI agents to use specialized tools for arithmetic, code review prompt generation, resource handling, and backend service querying, with integrated Slack bot support via Keycloak OAuth.

Setup Requirements

  • ⚠️Requires Python 3.12+ and 'uv' package manager for local setup.
  • ⚠️For the Slack integration and local OAuth flows, a Keycloak instance must be running on 'http://localhost:8080' and manually configured (client, user, secret).
  • ⚠️The `ENABLE_AUTH=false` setting (required for the Slack bot demo) disables authentication middleware, making all endpoints public. Token validation must then be handled by individual tools, making secure deployment challenging without strict network controls.
Verified SafeView Analysis
The server offers an `ENABLE_AUTH=false` mode for simplified integrations (e.g., Slack bot demo), explicitly warned as 'not suitable for internet exposure' in documentation. This design shifts authentication responsibility to individual tools or external handling, posing a significant risk if not properly understood and configured. Hardcoded default `MCP_HOST=0.0.0.0` can expose the server if not behind a firewall. Deployment manifests (`secret.yaml`) contain placeholder secrets ('CHANGE_ME') requiring manual updates for production. The `_local_development_token` in `api.py` allows a browser-based OAuth flow for local development, which is a local-only bypass, not a production risk.
Updated: 2025-11-19GitHub
0
0
High Cost
jerome79 icon
Sec7

Extract structured data (e.g., vendor, amount, date) from PDF invoices using a multi-agent AI pipeline.

Setup Requirements

  • ⚠️Requires Ollama to be installed and running locally with a model (e.g., 'llama3.2') for full LLM functionality; can be disabled by setting `LLM_BACKEND=none`.
  • ⚠️Requires Docker and Docker Compose for the recommended 'make dev' setup.
  • ⚠️Assumes Python 3.11+ (as suggested by the deployment script) or a compatible newer version.
Verified SafeView Analysis
The system uses environment variables for configuration (good), but the default CORS settings are wide open ('*') for both API and MCP, which is a significant risk for production deployments. The direct injection of raw, untrusted invoice text into LLM prompts in `InvoiceExtractionAgent` creates a potential for prompt injection, though output is constrained to JSON. PDF parsing with `fitz` is generally robust, and `SQLModel`'s ORM usage mitigates SQL injection. No hardcoded secrets or 'eval' statements were found.
Updated: 2025-12-29GitHub
PreviousPage 429 of 713Next