Stop Searching. Start Trusting.

The curated directory of MCP servers, vetted for security, efficiency, and quality.

Browse DirectoryWhy Us?

Tired of the MCP "Marketplace" Chaos?

We built MCPScout.ai to solve the ecosystems biggest pain points.

No Insecure Dumps

We manually analyze every server for basic security flaws.

Easy Setup

Our gotcha notes warn you about complex setups.

Avoid "Token Hogs"

We estimate token costs for cost-effective agents.

Products, Not Demos

We filter out "Hello World" demos.

CATEGORIES:
SORT:

Vetted Servers(8554)

0
0
Low Cost
dlmpx icon
Sec7

A demo implementation of an MCP (Model Context Protocol) server for handling WebSocket communication, message dispatching, and executing registered tools.

Setup Requirements

  • ⚠️Requires Java 21 SDK.
  • ⚠️Requires Maven for building and running.
  • ⚠️For development, an IDE with Lombok plugin/annotation processor is recommended.
Verified SafeView Analysis
The server handles dynamic tool execution with generic 'Object' parameters, which could pose deserialization vulnerabilities if additional tools are implemented without strict input validation. The WebSocket endpoint allows all origins ('*'), which should be restricted in a production environment.
Updated: 2025-11-24GitHub
0
0
Low Cost
Hrishikesh-Gaikwad-GG icon

expense_tracking_remote_mcp_server

by Hrishikesh-Gaikwad-GG

Sec9

Manages and tracks personal or business expenses through an API.

Setup Requirements

  • ⚠️Python 3.12+ only
  • ⚠️Data stored in a temporary directory (`tempfile.gettempdir()`), meaning expenses will not persist across server restarts or system cleanups by default.
Verified SafeView Analysis
The server uses parameterized SQL queries via `aiosqlite`, effectively preventing SQL injection vulnerabilities. No 'eval', 'exec', or direct shell commands are used. File paths for the database are within a temporary directory, and category files are relative to the script, limiting path traversal risks. No hardcoded secrets were identified.
Updated: 2025-12-01GitHub
0
0
Low Cost
Nasreen1717 icon

Gemini-cli-mcp-server

by Nasreen1717

Sec10

The provided files serve as informational documentation detailing GitHub's advanced AI integration updates and a biographical profile.

Verified SafeView Analysis
The provided 'source code' consists solely of two static Markdown files, `github.md` and `Report.md`. These files are informational documents and contain no executable code, server logic, or dynamic elements. Therefore, they inherently pose no security risks related to 'eval', obfuscation, network access, hardcoded secrets, or malicious patterns typically found in server-side code. There is nothing to 'run' as a server.
Updated: 2025-11-26GitHub
0
0
High Cost
prasoon-21 icon

Binary-Asesino

by prasoon-21

Sec5

An all-in-one platform providing job/internship discovery, resume building, MCP server management, and PDF editing, leveraging AI for workflow enhancement to simplify professional and tech workflows.

Setup Requirements

  • ⚠️Requires LLM API Key (potentially paid) for AI features
  • ⚠️Requires Java Development Kit (JDK) for backend setup
  • ⚠️PDF libraries need to be configured on the backend (details unknown)
Review RequiredView Analysis
The provided source code consists only of a React frontend UI. It does not contain server-side logic, AI implementations, or database interactions mentioned in the README (MCP Server Management, LLM interaction, finance, job finding, resume building, PDF editing). A comprehensive security audit is impossible without the backend (SpringBoot, Java) code. The frontend itself shows no obvious 'eval' usage, obfuscation, or hardcoded secrets in the provided snippets. However, the described features imply significant security considerations on the missing backend, especially concerning LLM interaction, financial data, and server management.
Updated: 2025-12-10GitHub
0
0
Low Cost
FangliangWong icon

mcp-demo-repo

by FangliangWong

Sec3

Provides a framework and base for developing and modding Minecraft servers.

Setup Requirements

  • ⚠️Requires Java Development Kit (JDK) 8 or higher
  • ⚠️Requires a compatible Minecraft server JAR file
  • ⚠️Specific Minecraft version compatibility may be required for modding
Review RequiredView Analysis
No source code was provided for analysis, making it impossible to perform a security audit. Without code visibility, potential risks related to network exposure, malicious patterns, or hardcoded secrets cannot be assessed. Therefore, a low score is assigned due to the lack of verifiable safety.
Updated: 2025-11-20GitHub
0
0
High Cost
ilvolodel icon

trustysign

by ilvolodel

Sec4

Provides Infocert digital signature capabilities for PDF documents via AI agents, supporting AcroForm detection and various positioning strategies.

Setup Requirements

  • ⚠️Requires Infocert `CLIENT_ID`, `CLIENT_SECRET`, and `TENANT` credentials.
  • ⚠️Requires an `MCP_API_KEY` environment variable for server authentication.
  • ⚠️Requires a running TrustyVault instance for OAuth tokens and user PIN management.
  • ⚠️PDF parsing libraries (`PyPDF2`, `pdfplumber`, `pyhanko`) can have complex dependencies and may require specific versions.
Review RequiredView Analysis
CRITICAL: The `README.md` explicitly instructs to use `sshpass -p 'Fr3qu3nc1.' ssh root@161.35.214.46` for deployment. Using `sshpass` with a hardcoded password, especially for `root` access, is an extreme security risk and should NEVER be done in a production environment. This indicates severe operational security vulnerabilities. Potential Server-Side Request Forgery (SSRF) exists due to downloading PDFs from arbitrary `pdf_url` without explicit validation to prevent access to internal network resources. The `save_signed_document` function uses `unquote(attach_name)` for filenames. While it handles URL encoding, using `os.path.basename` would provide stronger protection against directory traversal attacks for saved files. PDF parsing libraries (`pyhanko`, `PyPDF2`, `pdfplumber`) are inherently complex and could be attack vectors, although standard libraries are used. Authentication relies on a single API key stored in an environment variable (`MCP_API_KEY`). While simple, this offers less robust key management (e.g., dynamic rotation, revocation for individual agents) compared to a database-backed system. If this key is compromised, all access is lost.
Updated: 2025-12-13GitHub
0
0
Low Cost
ettysekhon icon

mcp-server-gke

by ettysekhon

Sec8

A weather service providing interactive forecasts via the Model Context Protocol (MCP) designed for AI agents and deployed on GKE.

Setup Requirements

  • ⚠️Requires 'uv' as the Python package manager for development.
  • ⚠️Requires Google Cloud CLI and an active GCP project with billing enabled for deployment.
  • ⚠️Requires Docker for building container images locally and for the CI/CD pipeline.
Verified SafeView Analysis
The project demonstrates a robust security model for deployment using Workload Identity Federation, avoiding hardcoded secrets in the CI/CD pipeline. The application code itself makes external HTTP requests to Open-Meteo APIs. HTML generation for MCP-UI responses directly interpolates user-provided city names; while MCP-UI clients are expected to render in a sandboxed iframe, basic input sanitization on the server side would enhance robustness against potential XSS if the client sandbox were to be bypassed or misconfigured.
Updated: 2025-12-10GitHub
0
0
High Cost
Deejpotter icon

my-mcp-server

by Deejpotter

Sec9

This MCP server provides a comprehensive suite of development tools and API integrations designed to empower AI agents with capabilities for file management, command execution, web search, documentation lookup, project management, image processing, grocery price comparison, and PDF data extraction.

Setup Requirements

  • ⚠️Requires Node.js 18 or higher.
  • ⚠️Full functionality depends on multiple external API keys, some of which are paid or have stringent free-tier rate limits (e.g., OpenAI, SerpAPI, Hugging Face, Coles, ClickUp).
  • ⚠️Image processing tools (sharp) and PDF parsing tools (pdf-parse-new) may have native dependencies that require specific system libraries (e.g., libvips for sharp) for optimal performance and functionality, depending on the operating system.
Verified SafeView Analysis
The server demonstrates robust security practices through strict command allowlisting, comprehensive dangerous pattern detection (e.g., 'rm -rf', fork bombs), and path validation that prevents directory traversal and access to sensitive system/project files (.git, .env, .ssh, node_modules). All external API keys are configured via environment variables, adhering to best practices. Command mapping for Windows also re-validates the transformed command, adding an extra layer of safety. This makes the server highly secure against common injection and file access vulnerabilities.
Updated: 2026-01-18GitHub
0
0
Low Cost
dr-basalt icon
Sec2

This server likely acts as a central control plane or management backend for the Coolify self-hosting platform, coordinating various services or deployments.

Review RequiredView Analysis
No source code was provided for analysis, making it impossible to perform a comprehensive security audit for 'eval', obfuscation, network risks, hardcoded secrets, or malicious patterns. The score reflects the inability to verify its safety due to lack of visibility.
Updated: 2025-12-15GitHub
0
0
Medium Cost
Berucha icon

a11y-mcp

by Berucha

Sec8

Automated WCAG 2.2 AA accessibility code review for GitHub Pull Requests, providing immediate feedback and fix suggestions.

Setup Requirements

  • ⚠️Requires Node.js 18+ runtime environment.
  • ⚠️Requires a GitHub token (`GITHUB_TOKEN`) with appropriate permissions (`pull-requests: write`) for GitHub Actions integration.
  • ⚠️Administrator access to a GitHub repository is needed to configure branch protection rules for mandatory checks.
Verified SafeView Analysis
The server interacts with GitHub API (`@octokit/rest`) to fetch PR content and post comments, requiring `GITHUB_TOKEN` with `pull-requests: write` scope. File system operations (`fs.readFileSync`) are used for local file analysis. The `child_process.spawn` is used internally by `mcp-client.js` to invoke the `mcp-server.js` or `cli-scanner.js` locally, and by `run.sh` to potentially start a Python HTTP server (for artifacts viewer). No direct `eval` or arbitrary external command execution from user input is observed. `LDS_STORYBOOK_URL` could point to an external resource, but its usage is currently for a planned feature (Phase 2) and not actively making network requests from the core analysis. Overall, the approach seems designed with security in mind for its intended purpose, but relies on GitHub's security for fetching PR content.
Updated: 2025-12-12GitHub
0
0
Medium Cost
wechicken456 icon

CTF-agent

by wechicken456

Sec2

AI assistant for solving Capture-The-Flag (CTF) cybersecurity challenges.

Setup Requirements

  • ⚠️Requires `uv` for dependency management.
  • ⚠️Docker is required to run the associated services (python-sandbox, web, network).
  • ⚠️Requires Python 3.11 or higher.
  • ⚠️Assumes an external 'ghidra' MCP server is also available for full functionality as referenced in prompts.
Review RequiredView Analysis
The server uses `subprocess.run(cmd, shell=True)` for many tools (e.g., `curl`, `xxd`, `exiftool`, `checksec`, `ropgadget`, `binwalk`, `gdb`, `one_gadget`, `libc_database`, `run_shell_command`, `run_ffuf_scan`), which introduces significant command injection risks if user inputs are not perfectly sanitized. The `run_python_script` tool allows arbitrary Python code execution, which is demonstrated as exploitable in `my_first_pwnie.py` with `eval(input())`. Docker containers are granted `NET_ADMIN` and `NET_RAW` capabilities, allowing extensive network manipulation. While these features are intended for a CTF solving agent, they make the server highly insecure for general-purpose use or in untrusted environments, posing a critical risk of host compromise if the underlying MCP communication is compromised or misused.
Updated: 2026-01-12GitHub
0
0
Medium Cost
Uzmakanwl icon

mcp-server

by Uzmakanwl

Sec5

This project appears to be a generic server implementation, likely intended to provide backend services or handle specific network protocols related to 'MCP', though its exact purpose is unknown without the source code.

Review RequiredView Analysis
A critical security audit cannot be performed as no source code was provided. The score of 5 reflects an unknown state; without code, it's impossible to check for 'eval', obfuscation, network risks, hardcoded secrets, or malicious patterns. Therefore, its safety cannot be guaranteed.
Updated: 2025-11-26GitHub
PreviousPage 502 of 713Next