Stop Searching. Start Trusting.

The curated directory of MCP servers, vetted for security, efficiency, and quality.

Browse DirectoryWhy Us?

Tired of the MCP "Marketplace" Chaos?

We built MCPScout.ai to solve the ecosystems biggest pain points.

No Insecure Dumps

We manually analyze every server for basic security flaws.

Easy Setup

Our gotcha notes warn you about complex setups.

Avoid "Token Hogs"

We estimate token costs for cost-effective agents.

Products, Not Demos

We filter out "Hello World" demos.

CATEGORIES:
SORT:

Vetted Servers(8554)

0
0
High Cost
Lapeno01 icon

crypto-mcp

by Lapeno01

Sec9

A Model Context Protocol (MCP) server for tracking cryptocurrency prices and market data using the CoinMarketCap API.

Setup Requirements

  • ⚠️Requires a free CoinMarketCap API key (CMC_API_KEY).
  • ⚠️Python 3.11 is the specified environment version.
  • ⚠️Utilizes a Conda environment for setup, requiring Conda to be installed.
Verified SafeView Analysis
The server securely handles the CoinMarketCap API key by loading it from an environment variable (`.env` file) and explicitly checking for its presence and a placeholder value. All external API calls are wrapped in robust error handling. No 'eval' or other directly dangerous patterns are present. The primary security consideration is ensuring the `CMC_API_KEY` remains confidential, which is a standard requirement for API-driven applications.
Updated: 2025-11-18GitHub
0
0
Low Cost
Tom687 icon
Sec1

An Electron desktop application demonstrating context bridge communication between renderer and main processes, allowing the execution of system commands from the renderer.

Setup Requirements

  • ⚠️Requires Electron to be installed or downloaded via npx.
Review RequiredView Analysis
CRITICAL RISK: The application exposes an 'executeCommand' function via the context bridge, allowing the renderer process (and thus potentially untrusted web content via an input field) to execute arbitrary system commands on the host machine using `child_process.exec`. This is a severe remote code execution vulnerability, allowing any user of the application to execute any command on their system. The `executeMCPCommand` function is also dangerous, as it executes commands with `mc-p` prefix, which could still lead to unintended system changes or exploits depending on what `mc-p` is.
Updated: 2025-11-29GitHub
0
0
Low Cost
tjwio icon
Sec7

Deploys a remote Model Context Protocol (MCP) server on Cloudflare Workers, offering authentication-less calculator tools for AI agents and clients.

Setup Requirements

  • ⚠️Deploys without any authentication, making the exposed API publicly accessible.
  • ⚠️Requires a Cloudflare account for deployment and management.
  • ⚠️Local testing/development requires `wrangler` CLI and potentially `mcp-remote` for client connections.
Verified SafeView Analysis
The source code itself (src/index.ts) uses Zod for input validation on the calculator tools, making the arithmetic operations robust against common injection attacks within their defined scope. No direct 'eval' or other highly dangerous patterns are present. However, the server is explicitly designed to be 'authless', as stated in the README, meaning it lacks any authentication or authorization mechanisms. While this is intentional for the example, deploying such a server publicly for sensitive operations or without proper access controls would pose a significant security risk for a real-world application.
Updated: 2025-12-11GitHub
0
0
High Cost
TobiWan1995 icon

fsm-mcp-python-client

by TobiWan1995

Sec8

Connects Large Language Models (LLMs) to state-aware MCP servers, managing LLM sessions and user interaction through an adapter-based architecture.

Setup Requirements

  • ⚠️Requires Python 3.13.2
  • ⚠️Requires a running Ollama server for LLM interaction (defaults to http://localhost:11434)
  • ⚠️Requires a running MCP server for capabilities and tool execution (defaults to http://127.0.0.1:8000/sse)
Verified SafeView Analysis
The client handles configuration via Pydantic models, CLI arguments, and internal defaults, with no hardcoded secrets for authentication. It interacts with an external MCP server and a local Ollama instance. Base64 encoded blobs from the MCP server are decoded for UI display but not executed, mitigating a common vulnerability. The primary security considerations involve the trustworthiness of the connected MCP server and the tools it exposes, as the client acts as an intermediary for tool execution.
Updated: 2025-12-10GitHub
0
0
Low Cost
bioanywhere icon

news

by bioanywhere

Sec8

A client library for accessing the World News API, enabling developers to search for news articles, extract news links, retrieve geo-coordinates, convert news websites to RSS feeds, and get top news headlines.

Setup Requirements

  • ⚠️Requires an API key for the World News API (paid service).
  • ⚠️Python client requires Python 3.7+ and C++ client requires CMake 3.2+ and Qt.
  • ⚠️The C++ client's internal OAuth `ReplyServer` listens on TCP port 9999, which could lead to port conflicts on the local machine.
Verified SafeView Analysis
The project is primarily an auto-generated API client library in multiple languages. It handles API key and OAuth 2.0 authentication. The C++ client includes a local HTTP server (`ReplyServer`) for handling OAuth redirect callbacks, listening on port 9999. While designed for localhost interaction, this component, like any local server, introduces a minor attack surface (e.g., port conflicts, unintended exposure). The served HTML contains inline JavaScript to process redirect responses, which is a standard client-side OAuth pattern. No direct malicious patterns, code obfuscation, or hardcoded secrets were identified within the provided truncated source code across the various language implementations.
Updated: 2025-12-19GitHub
0
0
Low Cost
spanwich icon

academic-mcp

by spanwich

Sec8

Zotero-integrated server for academic paper analysis, providing chunked access and LLM-powered extractions to overcome large document context limitations, enabling semantic search and on-demand content retrieval.

Setup Requirements

  • ⚠️Requires Zotero with papers and the Better BibTeX plugin installed for proper integration and citation key generation.
  • ⚠️Requires Ollama to be installed and running locally, with the specified LLM model ('qwen2.5:3b' by default) pulled and available.
  • ⚠️The Zotero application must be closed during database import/sync operations to prevent database locking issues (as explicitly handled by the ZoteroReader).
Verified SafeView Analysis
The server interacts with a local Ollama instance for LLM operations, limiting direct exposure to external network threats. It uses `subprocess` calls to manage the Ollama server (start, pull models), which is a common and necessary pattern for integrating local services. Zotero database access is read-only and operates on temporary copies to prevent locking issues and ensure data integrity. Custom JSON parsing logic (`_repair_json`, `_safe_json_loads`) is implemented to robustly handle potentially malformed JSON output from the LLM, reducing the risk of parsing errors. No direct use of `eval()` or hardcoded sensitive credentials beyond the local Ollama host is found. The overall architecture focuses on local processing and read-only access to external data sources, contributing to a relatively high security posture within its operational scope.
Updated: 2026-01-18GitHub
0
0
High Cost
ashen-dusk icon

mcp-hub

by ashen-dusk

Sec5

Manages, connects to, and interacts with Model Context Protocol (MCP) servers using AI agents and a GraphQL API, providing category-based organization and user-isolated state.

Setup Requirements

  • ⚠️Requires Python 3.12+.
  • ⚠️Requires a running Redis server.
  • ⚠️Requires various API keys (OpenAI/DeepSeek, Tavily, Google Client ID, OpenRouter) depending on features used.
Review RequiredView Analysis
The server allows configuration of `stdio` transport type for MCP servers, which executes arbitrary commands and arguments directly on the host machine. If an authenticated user (even an owner, not just admin) can configure `command` and `args` in the `MCPServer` model, it creates a severe remote code execution vulnerability. There is no explicit input sanitization or whitelisting for these fields. Additionally, the system makes dynamic external requests to `server.url` during OAuth discovery, token exchange, and FastMCP client operations, which could potentially expose the backend to SSRF or other network-based attacks if `server.url` is controlled by a malicious actor and not adequately validated beyond basic URL parsing.
Updated: 2026-01-18GitHub
0
0
Low Cost
xztaityozx icon
Sec7

Provides a Multi-Client Protocol (MCP) server for the A.I.VOICE Editor to facilitate communication and control.

Setup Requirements

  • ⚠️Requires A.I.VOICE Editor (version 1); it is not compatible with A.I. VOICE Editor 2.
  • ⚠️Functionality is limited to what is publicly exposed by the A.I.Talk.Editor.Api.
Verified SafeView Analysis
The provided source code is limited to the README.md, so a comprehensive security audit of the server's implementation is not possible. No explicit 'eval', obfuscation, hardcoded secrets, or malicious patterns are visible in the truncated content. Actual server code would need to be reviewed for network vulnerabilities, input sanitization, and access control.
Updated: 2025-12-13GitHub
0
0
Low Cost
Nicolas-Gong icon

api-request-mcp-server

by Nicolas-Gong

Sec8

Sends HTTP/HTTPS API requests, validates JSON responses, and supports proxy configurations.

Setup Requirements

  • ⚠️Requires manual configuration in a specific, non-standard Cline (Windows) path for MCP servers.
  • ⚠️Requires TypeScript compilation (`npm run build`) before it can be run.
  • ⚠️The MCP configuration needs an absolute path to the compiled 'build/index.js' file.
Verified SafeView Analysis
The server's primary function is to make arbitrary network requests based on user input. While the code itself uses standard libraries (Axios) and includes basic input type validation, it does not implement deep content validation for URLs or headers, which could pose a risk (e.g., SSRF) if exposed to untrusted clients without additional safeguards. No direct 'eval', hardcoded secrets, or obvious malicious patterns were found within the provided source. Proxy handling respects environment variables and NO_PROXY settings correctly.
Updated: 2025-12-03GitHub
0
0
Medium Cost
polysolmcp icon

polysolmcp

by polysolmcp

Sec7

Enables AI agents to interact with Polymarket prediction markets by providing market data, prices, and historical information.

Setup Requirements

  • ⚠️Requires Python 3.10 or higher.
  • ⚠️Requires Polymarket API Key (private key) and Funder Wallet Address, which are sensitive credentials.
  • ⚠️Requires manual configuration in MCP-compatible clients like Claude Desktop, including the absolute path to the repository.
Verified SafeView Analysis
The server requires a Polymarket API private key (`KEY`) and funder wallet address (`FUNDER`) as environment variables. While loading secrets from `.env` is a standard practice, handling a private key inherently carries significant security risk. Users must ensure their local environment and `.env` file are extremely secure to prevent unauthorized access to their Polymarket account. The server communicates via standard input/output (stdio), which limits network exposure of these credentials during operation.
Updated: 2025-12-09GitHub
0
0
Medium Cost
support-and-care-labs icon

maven-mcps

by support-and-care-labs

Sec9

A collection of Model Context Protocol (MCP) servers designed to aid in Apache Maven improvements by providing LLM-accessible tools and context.

Setup Requirements

  • ⚠️Docker (Docker Compose V2) is required for running the MCP servers.
  • ⚠️The project is an umbrella for multiple independent MCP servers; setup involves navigating to specific subdirectories and following their individual README.adoc files.
  • ⚠️Building documentation locally requires Antora, which is a Node.js/npm application.
  • ⚠️The `mail-mcp` server uses Python scripts for data retrieval and processes large mail archives (700+ MB), implying Python dependencies for that specific server.
Verified SafeView Analysis
The provided source code primarily consists of documentation and Antora configuration files. It does not contain executable code, 'eval' statements, obfuscation, or hardcoded secrets directly. The project describes interacting with external services (GitHub, Atlassian, mail archives) via underlying MCP servers. The security of these actual MCP server implementations (e.g., mail-mcp), particularly concerning credential handling and network interactions, is not assessable from the truncated code and would require separate audits.
Updated: 2026-01-11GitHub
0
0
Low Cost
haakco icon

mcp-utils

by haakco

Sec7

Provides a comprehensive set of shared utilities for building robust and standardized Model Context Protocol (MCP) servers, covering architecture, formatting, data operations, caching, rate limiting, WebSockets, and logging.

Setup Requirements

  • ⚠️Requires Node.js v18.0.0 or higher.
  • ⚠️Local development with other MCP servers may require configuring `file:` dependencies in `package.json`.
  • ⚠️Logging utilities (`createLoggerFromEnv`) rely on `DEBUG` and `LOG_LEVEL` environment variables for configuration.
Verified SafeView Analysis
The `postman-helpers.ts` file includes a `validateScript` function that uses `new Function(script)` for basic JavaScript syntax validation. While not direct execution, compiling arbitrary, untrusted input with `new Function()` can be a security risk due to potential denial-of-service (resource exhaustion during compilation) or obscure V8 engine exploits. It is generally safer to use dedicated JavaScript parser libraries for syntax validation without runtime compilation. No other critical vulnerabilities like hardcoded secrets or malicious patterns were identified in the provided code.
Updated: 2026-01-07GitHub
PreviousPage 631 of 713Next