Stop Searching. Start Trusting.

The curated directory of MCP servers, vetted for security, efficiency, and quality.

Browse DirectoryWhy Us?

Tired of the MCP "Marketplace" Chaos?

We built MCPScout.ai to solve the ecosystems biggest pain points.

No Insecure Dumps

We manually analyze every server for basic security flaws.

Easy Setup

Our gotcha notes warn you about complex setups.

Avoid "Token Hogs"

We estimate token costs for cost-effective agents.

Products, Not Demos

We filter out "Hello World" demos.

CATEGORIES:
SORT:

Vetted Servers(8554)

0
0
Medium Cost
GitCheckoutMaster icon

Full_UI_Automation

by GitCheckoutMaster

Sec1

An AI assistant for Windows UI automation, specializing in file management and VS Code interactions, accessible via a chat interface.

Setup Requirements

  • ⚠️Requires a Windows operating system due to explicit calls to `powershell.exe` and hardcoded Windows paths for scripts.
  • ⚠️Requires Node.js runtime to be installed, as the `McpToolset` instances launch Node.js-based MCP servers.
  • ⚠️Requires a `GOOGLE_API_KEY` for the Gemini LLM, which must be provided via an `.env` file or environment variables.
Review RequiredView Analysis
CRITICAL: The `file_mgmt_server` and `vscode_mcp_server` tools utilize `node:child_process.exec` to run PowerShell scripts. User-provided `file_path` and `content` are directly interpolated into these commands (e.g., `-Path "${file_path}"`), creating severe command injection vulnerabilities. A malicious user could execute arbitrary code on the host system with the privileges of the running server. The use of `powershell.exe -ExecutionPolicy Bypass` further exacerbates this risk by disabling PowerShell's script execution restrictions. Additionally, the FastAPI endpoint `/api/chat` lacks any form of authentication or authorization, allowing any client to trigger these highly insecure operations. Hardcoded Windows paths also imply a lack of portability and potential misconfigurations if run in different environments.
Updated: 2025-11-27GitHub
0
0
Low Cost
varun-dev-tech icon

mcp_server

by varun-dev-tech

Sec1

This repository appears to be a placeholder or initial setup for a server application, specifically named 'mcp server', but no functional code is provided.

Review RequiredView Analysis
CRITICAL: No source code beyond the README.md file was provided for analysis. Therefore, a comprehensive security audit is impossible. The score is extremely low due to the complete lack of visibility into potential vulnerabilities, malicious patterns, or hardcoded secrets. It is impossible to determine if 'eval' or other dangerous functions are used.
Updated: 2025-12-05GitHub
0
0
Low Cost
nik1097 icon
Sec9

Estimates the token cost of individual tool responses from an MCP server to help clients understand LLM inference expenses.

Setup Requirements

  • ⚠️Requires Python 3.13 or newer.
  • ⚠️An existing MCP server is required for the tool to analyze.
  • ⚠️A Bearer token (`--token`) may be required by the target MCP server for authentication.
Verified SafeView Analysis
The project functions as a client to an external MCP server, with the server URL and authentication token provided by the user. It uses standard JSON parsing (`json.loads`) which is generally safe. No 'eval' or similar dangerous functions were found. The primary security consideration is operational: ensuring the user points the client to a trusted MCP server, as the tool will interact with whatever URL it is given.
Updated: 2025-12-11GitHub
0
0
Medium Cost
MinatoNami icon

project-alena

by MinatoNami

Sec7

Orchestrates various AI models and tools (like Google Calendar and Codex CLI) via MCP for local, privacy-first personal assistant capabilities, integrating voice, chat, and external services like Telegram.

Setup Requirements

  • ⚠️Codex CLI Required: Requires the Codex CLI to be installed and configured, which may involve a paid subscription.
  • ⚠️Google OAuth Credentials: Manual setup in Google Cloud Console is required to obtain OAuth 2.0 credentials (`credentials.json`) for Google Calendar integration.
  • ⚠️Hardcoded `ALLOWED_REPOS`: The `modules/core/controller/safety.py` file contains a hardcoded whitelist of allowed repository paths (`/Users/lionelchong/sandbox`) for Codex operations, which must be manually modified for different development environments.
  • ⚠️Ollama Local Server: Requires a local Ollama instance running (default `http://localhost:11434`) with a language model downloaded (e.g., `llama3.1` or `gpt-oss:20b`).
Verified SafeView Analysis
Controlled Subprocess Execution: The `codex_runner.py` uses `subprocess.run` to invoke the `codex` CLI. While it attempts to sandbox with `--sandbox workspace-write` for `--apply` actions, any external CLI invocation carries inherent risks if the CLI itself or the prompt input can be exploited for arbitrary command execution. The project states "No shell execution (safe subprocess calls)" but this relies on the `codex` CLI's own sandboxing. Hardcoded Repository Whitelist: The `modules/core/controller/safety.py` module includes `ALLOWED_REPOS = ["/Users/lionelchong/sandbox"]` which is a hardcoded path. This is a critical security control to prevent agents from accessing arbitrary filesystem locations, but it must be made configurable by the user or dynamically determined to be practical and secure in different deployment environments. As it stands, it severely limits usability and is a significant setup friction. Default Wildcard CORS: The FastAPI backend for the voice assistant (`modules/voice-assistant/backend/app/main.py`) uses `allow_origins=["*"]` for CORS by default. While common for local development, this poses a security risk if the server is exposed to the internet, as it allows any domain to make cross-origin requests. Secrets Management: `modules/mcp/google-calendar/secrets/README.md` explicitly instructs users not to commit `credentials.json` or `token.json` and details secure handling, which is good practice. Environment variables are supported for custom paths.
Updated: 2026-01-19GitHub
0
0
Medium Cost
aryanguptacsvtu icon

test-remote-mcp-server

by aryanguptacsvtu

Sec8

Manages personal expenses by allowing users to add, list, and summarize financial transactions.

Setup Requirements

  • ⚠️Requires Python 3.12 or higher.
  • ⚠️Expense data is stored in a temporary SQLite database, meaning data will not persist across server restarts or system reboots.
  • ⚠️Database file permissions might cause issues if the temporary directory is not writable by the server process.
Verified SafeView Analysis
The server uses parameterized SQL queries, effectively mitigating SQL injection risks. No 'eval' or obvious hardcoded secrets are present. The database is stored in a temporary directory, which while not ideal for persistence, doesn't inherently introduce a security vulnerability beyond potential unauthorized access by other local processes in a shared environment (a general OS concern). The 'categories.json' is read from a local file, posing minimal risk unless the file system itself is compromised.
Updated: 2025-11-22GitHub
0
0
Medium Cost
donjosh-ua icon

localmcp

by donjosh-ua

Sec5

Provides basic mathematical addition and CSV data analysis functionalities as an MCP server tool.

Setup Requirements

  • ⚠️Docker required
  • ⚠️MCP gateway required
  • ⚠️Python dependencies (pandas)
Review RequiredView Analysis
The `get_csv_stats` tool allows a `file_path` argument that directly uses `pd.read_csv()`. Without proper input validation or strict sandboxing (e.g., within a Docker volume mounted only to '/data' and strict path enforcement by the gateway), this could lead to arbitrary file disclosure within the container's accessible filesystem if a malicious path is provided.
Updated: 2025-11-29GitHub
0
0
Low Cost
Neophite2023 icon

barber-mcp-server

by Neophite2023

Sec8

This server provides an automated booking and information retrieval system for a barber shop, integrating with a conversational AI via the Model Context Protocol and potentially Twilio Media Streams.

Setup Requirements

  • ⚠️Requires Google Service Account credentials (`GOOGLE_CLIENT_EMAIL`, `GOOGLE_PRIVATE_KEY`) with Google Calendar API access configured for appointment management.
  • ⚠️The `src/websocket.ts` integration with Deepgram, OpenAI GPT-4o, and ElevenLabs is conceptual and requires significant additional implementation and external service setup for a complete voice assistant.
  • ⚠️The tenant data is currently a mock database and would need to be replaced with a persistent data store for production use.
Verified SafeView Analysis
The `src/websocket.ts` file performs `JSON.parse` on unvalidated WebSocket messages, which could be a denial-of-service vector if malformed or excessively large input is sent. Tool arguments are cast using `as string`, relying on the `@modelcontextprotocol/sdk`'s `inputSchema` validation for safety against injection, which is a common practice but requires trust in the SDK's validation mechanisms. Environment variables for Google Calendar are handled correctly. No `eval` or hardcoded secrets were found.
Updated: 2026-01-18GitHub
0
0
Low Cost
AyushRaj005 icon
Sec9

Enables Claude AI to function as an SRE assistant by interacting with external systems and internal data for observability, debugging, and workflow automation.

Setup Requirements

  • ⚠️Python 3.13+ required (based on MCP_server/pyproject.toml)
  • ⚠️Manual Claude Desktop configuration required for integration
Verified SafeView Analysis
The provided code examples (Pokemon API and Leave Manager) are simple and do not exhibit obvious security vulnerabilities like 'eval' or hardcoded sensitive secrets. They make standard HTTP requests or manage in-memory data. The primary security risk in a production context would lie in the integrations with external platforms (AWS, Datadog, Sentry, etc.), which are not part of these simplified examples. Access control and authentication for the MCP servers themselves would be crucial in a real-world deployment.
Updated: 2025-11-20GitHub
0
0
Medium Cost
circuitry-dev icon

circuitry-mcp-server

by circuitry-dev

Sec9

Provides AI coding agents with programmatic access to Circuitry, a visual workflow and diagramming platform.

Setup Requirements

  • ⚠️Requires Circuitry Server (Electron desktop application) to be installed and running locally.
  • ⚠️User must manually generate an 'Access Key' from the Circuitry Server's preferences for initial setup.
  • ⚠️Requires an MCP-compatible AI client (e.g., Claude Code, Cursor, VS Code with Copilot, Gemini CLI) to utilize its functionality.
Verified SafeView Analysis
The server acts as a proxy, forwarding requests to a local Circuitry 'EServer' Electron application, which is responsible for sensitive operations like filesystem access. It uses an access key for authentication, which is stored locally in a configuration file or provided via environment variables, and requires user approval via a dialog for initial connection. Input validation is handled by the MCP SDK using Zod schemas. No 'eval' or obvious malicious patterns found.
Updated: 2025-12-14GitHub
0
0
Medium Cost
akashjavalekar02 icon

MCP_Server

by akashjavalekar02

Sec6

A custom server implementation designed to interact with the Minecraft protocol, likely for hosting or developing custom game logic and player experiences.

Setup Requirements

  • ⚠️Requires specific network port(s) to be open and available (e.g., 25565 for Minecraft).
  • ⚠️Requires Python 3.x installed with potentially additional dependencies (e.g., via pip).
Verified SafeView Analysis
As a network server, MCP_Server inherently exposes ports to external connections. Without specific details on input validation, authentication, and authorization for protocol handling, potential vulnerabilities related to unvalidated input or protocol exploits cannot be fully assessed. No explicit 'eval', code obfuscation, or hardcoded secrets were identified in the truncated source code.
Updated: 2026-01-18GitHub
0
0
Medium Cost
george7979 icon

gemini-mcp-server

by george7979

Sec9

An MCP server to integrate Google Gemini AI capabilities (text generation, web search, YouTube analysis) into Claude Code and other MCP clients.

Setup Requirements

  • ⚠️Requires Node.js 18+.
  • ⚠️Requires a Google AI API Key (free tier available, but usage limits apply).
  • ⚠️Ensure absolute path to server executable is used in MCP client configuration.
Verified SafeView Analysis
The server correctly handles the Google API key by requiring it as an environment variable (GOOGLE_API_KEY) and performing a startup check for its presence. Input validation is implemented using Zod with `.strict()` schemas, which helps prevent unexpected or malicious inputs. Error messages are actionable and do not appear to leak sensitive internal information. There is no usage of 'eval' or obvious obfuscation. The system relies on external APIs, and proper error handling is in place for common API failures.
Updated: 2025-12-18GitHub
0
0
Low Cost
haroldcampbell icon

git-control-mcp

by haroldcampbell

Sec7

Provides Micro-Control Protocol (MCP) tools for common Git and GitHub operations, enabling automated source control management and integration with developer environments like Codex CLI.

Setup Requirements

  • ⚠️Requires 'gh' (GitHub CLI) to be installed and authenticated for pull request creation.
  • ⚠️Requires 'uv' package manager for dependency management and execution.
  • ⚠️Requires Python 3.11 or newer.
Verified SafeView Analysis
The server uses `subprocess.run` to execute `git` and `gh` commands. While the `run_git` tool enforces an allowlist of subcommands, other tools (e.g., `stage_files`, `commit_changes`, `fetch`) accept `extra_args` which are passed directly to specific git subcommands. This could potentially allow injection of additional, unintended git flags if the client providing `extra_args` is untrusted. The server primarily operates over stdio for local interaction, reducing the external attack surface. Explicit warnings are provided for destructive Git operations.
Updated: 2026-01-18GitHub
PreviousPage 445 of 713Next