Stop Searching. Start Trusting.

The curated directory of MCP servers, vetted for security, efficiency, and quality.

Browse DirectoryWhy Us?

Tired of the MCP "Marketplace" Chaos?

We built MCPScout.ai to solve the ecosystems biggest pain points.

No Insecure Dumps

We manually analyze every server for basic security flaws.

Easy Setup

Our gotcha notes warn you about complex setups.

Avoid "Token Hogs"

We estimate token costs for cost-effective agents.

Products, Not Demos

We filter out "Hello World" demos.

CATEGORIES:
SORT:

Vetted Servers(8554)

0
0
High Cost
Digital-Defiance icon

vscode-mcp-screenshot

by Digital-Defiance

Sec7

Provides a VSCode extension and Language Server Protocol (LSP) integration to enable AI agents to capture, analyze, and document application visuals through full screen, window, or region screenshots with PII masking and multi-format support.

Setup Requirements

  • ⚠️Requires Node.js and npm/npx to install and run the underlying MCP screenshot server.
  • ⚠️The underlying MCP screenshot server likely has OS-specific dependencies related to screen capturing (e.g., graphical environment, Xvfb for headless Linux).
  • ⚠️Primarily designed as a VSCode extension, not a standalone server for direct programmatic access without VSCode environment.
Review RequiredView Analysis
The system relies on spawning an external 'mcp-screenshot' server process (via npx or node), which introduces a supply chain risk. While the 'savePath' parameter is tested for path traversal vulnerabilities, external process execution and file system interactions always warrant careful consideration. Communication with the server happens via secure IPC, and no direct 'eval' or hardcoded secrets are apparent.
Updated: 2026-01-17GitHub
0
0
Medium Cost
dSchulenburg icon

mcp-imap-manager

by dSchulenburg

Sec8

A Model Context Protocol (MCP) server for managing IMAP email operations (list, move, delete) across multiple accounts.

Setup Requirements

  • ⚠️Requires a .env file with configured IMAP account credentials and server settings.
  • ⚠️Docker and Docker Compose are required for simplified deployment.
  • ⚠️App passwords must be set up for GMX and Gmail accounts, requiring 2FA.
  • ⚠️Production deployment requires an external 'proxy' Docker network and Traefik configured for automatic HTTPS.
Verified SafeView Analysis
The server uses environment variables for all sensitive credentials (IMAP passwords, API keys), which is good practice. The /mcp endpoint can be protected with an API key. TLS is enforced for IMAP connections and a production Docker Compose setup with Traefik is provided for secure HTTPS access. No 'eval' or malicious patterns are evident. Potential risks would involve improper API key management or weak IMAP account passwords (app passwords are recommended).
Updated: 2026-01-19GitHub
0
0
Low Cost
hsiangjenli icon

python-mcp-template

by hsiangjenli

Sec9

A DevOps-friendly template for building Multi-Agent Communication Protocol (MCP) servers using FastAPI and fastmcp.

Setup Requirements

  • ⚠️Requires uv for dependency management and running scripts.
  • ⚠️Requires Docker installed to build and run the containerized server.
  • ⚠️Requires Python 3.12 or newer.
  • ⚠️Specific setup is required to address CORS middleware conflicts when running the HTTP server directly via uvicorn.
Verified SafeView Analysis
The template uses a permissive CORS configuration (allow_origins=['*']) in `mcp_tools/main_http.py`, which is common for development but might require stricter configuration for production deployments to prevent potential cross-site scripting vulnerabilities. No other critical security risks like hardcoded secrets, 'eval' usage, or obvious malicious patterns were identified in the provided code.
Updated: 2025-12-08GitHub
0
0
Low Cost
Mahmoud-Khater icon

mcp-server-demo

by Mahmoud-Khater

Sec8

This project demonstrates running an MCP (Model Control Protocol) server with a simple calculator tool, deployed via Docker.

Setup Requirements

  • ⚠️Docker is required for deployment as per the primary demonstration method.
  • ⚠️Python 3.12 or newer is required as specified in `pyproject.toml`.
Verified SafeView Analysis
The server binds to `0.0.0.0`, making it broadly accessible; ensure proper firewall rules are in place for production environments. Environment variables are loaded from a `.env` file, which is good practice for managing secrets, though the relative path `../.env` could lead to issues if the execution context changes. No direct malicious patterns or dangerous functions like `eval` were observed in the provided source.
Updated: 2025-11-26GitHub
0
0
Medium Cost
deeprave icon
Sec9

A minimal MCP server providing a web search tool via DuckDuckGo, designed for integration with AI agents.

Setup Requirements

  • ⚠️Python 3.10+ required
  • ⚠️Requires manual MCP client configuration specifying the absolute path to the 'search_mcp.py' script.
  • ⚠️Relies on DuckDuckGo's public web interface for scraping, which can be less stable or subject to rate limiting/blocking compared to a dedicated API.
Verified SafeView Analysis
The server uses stdio for communication, limiting direct network exposure to external clients. It does not contain 'eval', hardcoded secrets, or obfuscation. The primary external interaction is through the 'ddgs' library which scrapes DuckDuckGo, inherently relying on the stability and structure of DuckDuckGo's website, which could be a point of failure for the functionality, but not a direct security vulnerability within the server's code itself. Error handling for network issues and timeouts is present.
Updated: 2025-12-11GitHub
0
0
Low Cost
Akungapaul icon

wp-menus-mcp

by Akungapaul

Sec8

This server enables external applications to manage WordPress navigation menus via the Model Context Protocol (MCP).

Setup Requirements

  • ⚠️Requires Node.js version 18 or higher.
  • ⚠️Requires a running WordPress instance with the REST API enabled.
  • ⚠️Requires a WordPress username and an application password with sufficient permissions to manage navigation menus and potentially site settings.
  • ⚠️Integration with the Model Context Protocol (MCP) ecosystem is implied by the SDK dependency.
Verified SafeView Analysis
The server utilizes environment variables for sensitive WordPress credentials (URL, username, app password), which is good practice for managing secrets. Input validation is performed using `zod` schemas for each tool, which helps mitigate common injection vulnerabilities. The `set_menu_location` tool directly interacts with a sensitive WordPress settings endpoint (`/wp/v2/settings`). While the input is validated, misconfiguration of WordPress permissions for the provided application password or insufficient security measures for the MCP server itself could lead to unauthorized menu changes or broader site settings modifications. No 'eval' or obvious obfuscation is present in the provided code.
Updated: 2025-11-28GitHub
0
0
Low Cost
baptiste-max icon

holded-mcp-server

by baptiste-max

Sec1

Source code not provided, cannot determine the specific use case of this 'holded-mcp-server'.

Setup Requirements

  • ⚠️Source code not provided, cannot identify specific requirements or friction points for setup.
Review RequiredView Analysis
Critical: Source code was not provided. Therefore, a security audit cannot be performed. It is impossible to assess risks such as 'eval' usage, obfuscation, network vulnerabilities, hardcoded secrets, or malicious patterns without the code itself. Running any software without its source code being audited is highly risky.
Updated: 2025-12-06GitHub
0
0
Medium Cost
Harikapudotam icon

mcp-server-cap-odata

by Harikapudotam

Sec6

An MCP server for CAP OData services that translates natural language requests into JSON-RPC calls for OData CRUD operations using Google Gemini, acting as an AI gateway to enterprise data.

Setup Requirements

  • ⚠️Requires a `GEMINI_API_KEY` environment variable for AI functionality, which is a paid service.
  • ⚠️The server explicitly disables SSL certificate validation (`rejectUnauthorized: false`) for outgoing HTTPS requests, which is a critical security concern for production deployments.
  • ⚠️The project is built on SAP CAP (Cloud Application Programming Model), implying knowledge of the SAP ecosystem for full utilization and deployment.
Review RequiredView Analysis
1. **Critical Vulnerability (`rejectUnauthorized: false`):** The `https.Agent` is configured with `rejectUnauthorized: false`. This disables SSL certificate validation for all outgoing HTTPS requests made via `axios`. In a production environment, this is a severe security risk, making the application vulnerable to Man-in-the-Middle (MITM) attacks where an attacker could intercept and potentially alter communication with the backend OData service. 2. **Functional Mismatch in OData Query Construction:** There is a discrepancy between the structured filter and sort parameters defined in `srv/rpcSchema.js` and the format expected by `srv/tools/read.js` and `srv/tools/query.js`. The tool functions appear to expect OData query string components (e.g., `filter` as a string), but `normalizeToJsonRpc` and the `RPC_SCHEMA` define these as structured objects. This functional bug will likely lead to runtime errors or incorrect query results for complex read/query operations. 3. **Good Input Validation:** The server uses `Ajv` and a well-defined `RPC_SCHEMA` for validating incoming JSON-RPC requests, and Google Gemini's structured output feature is leveraged to ensure natural language inputs are transformed into schema-compliant JSON-RPC. This is a good practice for mitigating injection risks from malformed requests.
Updated: 2025-12-08GitHub
0
0
Medium Cost
RazonIn4K icon

grok-mcp-server

by RazonIn4K

Sec9

Provides AI assistants with access to Grok 4's capabilities including chat completions, live search, and model management via the Model Context Protocol.

Setup Requirements

  • ⚠️Requires an xAI API Key (paid service)
  • ⚠️Node.js >= 18.0.0 is a prerequisite
  • ⚠️Optional setup with 'direnv' for environment variable management adds a dependency and configuration step
Verified SafeView Analysis
The server demonstrates strong security practices including explicit use of environment variables for API keys, robust input validation via Zod, and a basic sanitization function to mitigate XSS/prototype pollution. Communication occurs over standard I/O (stdio) as per the MCP specification, avoiding direct network exposure for tool calls. Resilience features like rate limiting and circuit breakers are implemented. The shared secret authentication mechanism is present but currently commented out in the provided code.
Updated: 2025-11-24GitHub
0
0
Medium Cost
happyvertical icon

smrt-docs-mcp

by happyvertical

Sec9

Provides AI-powered access to SMRT framework documentation, routing developer queries to relevant package experts using RAG (Retrieval-Augmented Generation) from CLAUDE.md files.

Setup Requirements

  • ⚠️Requires an AI provider API key (e.g., OpenAI, Anthropic, Gemini) which may incur costs.
  • ⚠️Requires Node.js runtime version 24.0.0 or higher.
  • ⚠️Requires the SMRT framework source code to be present locally for scanning CLAUDE.md documentation files.
Verified SafeView Analysis
The server uses environment variables for AI API keys, preventing hardcoded secrets. Communication with the MCP client is via standard I/O (stdio), which is generally secure within a controlled environment. It reads local CLAUDE.md files for documentation, which is within its expected operational scope. No 'eval' or other direct code execution vulnerabilities were found within the provided source. The 'auto-changeset.ts' script executes git commands, but this is a development/CI script and not part of the runtime server.
Updated: 2025-12-10GitHub
0
0
Low Cost
RolleRocker icon

mcp-demo-server

by RolleRocker

Sec7

Demonstrates the Model Context Protocol (MCP) capabilities by offering tools for arithmetic, note management, weather queries, and file system operations, along with dynamic resources and prompt templates.

Setup Requirements

  • ⚠️Requires Java 21 or higher
  • ⚠️The `read_file`, `write_file`, and `list_directory` tools interact with the local file system where the server is run, subject to internal path validations.
Verified SafeView Analysis
The server implements file system operations (`read_file`, `write_file`, `list_directory`). Path traversal attempts ('..') and access to known sensitive system directories (`/etc`, `/sys`, `/proc`) are explicitly mitigated by the `FilePathValidator` in the domain layer. No hardcoded secrets or direct remote code execution vulnerabilities were identified. The external weather API (Open-Meteo) is free and does not require an API key. File I/O operations inherently carry risk, but the explicit validations enhance safety.
Updated: 2025-12-27GitHub
0
0
Medium Cost
CuteDandelion icon

VPS-Execute-MCP

by CuteDandelion

Sec8

Enables AI agents and other clients to securely interact with remote servers via SSH for command execution, file management, and system monitoring.

Setup Requirements

  • ⚠️Requires SSH access to a remote host, configured with either a private key (recommended) or password.
  • ⚠️Requires Node.js 18+ to run.
  • ⚠️The `.env` file must be correctly configured with SSH credentials (host, username, and authentication method) and API_KEY (for REST API) before running. For Claude Desktop integration, an absolute path to the `mcp-server.js` file and its environment variables must be configured in Claude's settings.
  • ⚠️SSH private key passphrases, if used, will be stored in plain text in the `.env` file or Claude Desktop configuration, which is a security consideration.
Verified SafeView Analysis
The server implements several good security practices, including API key authentication, rate limiting, and comprehensive audit logging. It supports SSH key authentication (recommended) and includes basic dangerous command pattern detection, with an optional command whitelisting feature. However, storing SSH private key passphrases in plain text environment variables is a potential risk, though acknowledged in documentation. The overall security heavily relies on proper user configuration (e.g., using a dedicated SSH user with limited permissions and enabling command whitelisting).
Updated: 2025-12-13GitHub
PreviousPage 496 of 713Next