Stop Searching. Start Trusting.

The curated directory of MCP servers, vetted for security, efficiency, and quality.

Browse DirectoryWhy Us?

Tired of the MCP "Marketplace" Chaos?

We built MCPScout.ai to solve the ecosystems biggest pain points.

No Insecure Dumps

We manually analyze every server for basic security flaws.

Easy Setup

Our gotcha notes warn you about complex setups.

Avoid "Token Hogs"

We estimate token costs for cost-effective agents.

Products, Not Demos

We filter out "Hello World" demos.

CATEGORIES:
SORT:

Vetted Servers(8554)

44
30
Medium Cost
Artmann icon
Sec9

Enables AI assistants and agents to search various package registries (NPM, Cargo, NuGet, PyPI, Go) and retrieve up-to-date package information.

Setup Requirements

  • ⚠️Requires Node.js 18+ or Bun runtime to execute.
  • ⚠️Requires an active internet connection to access package registries.
  • ⚠️The default `npx` command might use `npm` to install and run if `bun` is not globally available.
Verified SafeView Analysis
The server uses `zod` for input validation, which helps prevent malformed inputs. Network requests to external package registries are performed with a 10-second timeout, mitigating potential hangs. No hardcoded secrets or 'eval' statements were found. The tool interacts with well-known public APIs of package registries, which are generally trusted. Communication with the MCP client is via standard I/O.
Updated: 2025-12-02GitHub
44
44
Low Cost
Azure-Samples icon
Sec8

Provides a remote Model Context Protocol (MCP) server using Azure Functions to host tools for AI agents, specifically for managing code snippets and simple greetings.

Setup Requirements

  • ⚠️Docker required locally for Azurite (Azure Storage Emulator) if using snippet storage.
  • ⚠️Azure Functions Core Tools must be installed.
  • ⚠️Azure account and subscription are needed for cloud deployment using `azd`.
Verified SafeView Analysis
The server is built on Azure Functions, which provides a managed and secure execution environment. Remote access is secured by design using system keys (e.g., `mcp_extension`) and HTTPS, with options for OAuth and network isolation mentioned in the README. The code uses Azure Blob Storage bindings where snippet names are dynamically incorporated into blob paths. While Azure Blob Storage generally handles paths robustly, improper sanitization of user-provided `snippetname` could theoretically lead to unexpected blob interactions if not mitigated by the Azure Functions runtime or MCP framework.
Updated: 2026-01-15GitHub
44
72
Low Cost
loonghao icon
Sec9

An MCP server that enables AI assistants to send various message types, files, and images to WeCom (WeChat Work) groups, supporting single or multiple bot configurations.

Setup Requirements

  • ⚠️Requires Python 3.10+.
  • ⚠️A WeCom Bot Webhook URL is mandatory, obtained from WeCom group settings, and must be configured via environment variables (e.g., WECOM_WEBHOOK_URL).
  • ⚠️Requires specific JSON configuration within your MCP client (e.g., Claude Desktop, VSCode Cline) to specify the server command and environment variables, typically using `uvx` for execution.
Verified SafeView Analysis
The server demonstrates good security practices: - Webhook URLs are validated to start with 'http://' or 'https://'. - Environment variables are used for sensitive information (webhook URLs), preventing hardcoding. - Image downloads from URLs validate HTTP status and content type, mitigating some risks related to fetching arbitrary content. - File operations check for file existence and type before processing. - Temporary files are used for downloaded images. - Relies on 'notify-bridge' for actual WeCom API interaction, delegating external API security concerns. - No obvious use of 'eval', 'exec', or other direct code execution from untrusted input was found in the provided source.
Updated: 2026-01-07GitHub
44
37
High Cost
danielsogl icon
Sec8

Provides comprehensive web performance, accessibility, SEO, and security auditing and analysis using Google Lighthouse for LLMs and AI agents.

Setup Requirements

  • ⚠️Requires Node.js 22.0.0 or newer
  • ⚠️Requires Chrome/Chromium browser to be installed on the system where the server runs
  • ⚠️Requires an MCP client (e.g., VS Code, Cursor, Claude Desktop) to interact with the server, as it is not a standalone web service
Verified SafeView Analysis
The server's core function involves making external network requests to user-provided URLs for auditing, which carries inherent risks. Basic URL validation (HTTP/S protocol check) is implemented in schemas to prevent invalid protocols, but it does not protect against potential Server-Side Request Forgery (SSRF) if the server is deployed in an environment with access to internal networks. The SECURITY.md documentation explicitly advises running the server in isolated network environments and validating URLs to mitigate these risks. No obvious 'eval' or hardcoded secrets were found in the provided source code.
Updated: 2026-01-19GitHub
44
39
Medium Cost
kocierik icon

mcp-nomad

by kocierik

Sec9

This MCP server provides an interface to manage HashiCorp Nomad clusters, enabling operations like job, deployment, namespace, node, allocation, variable, volume, and ACL management through a Model Context Protocol client.

Setup Requirements

  • ⚠️Requires a running HashiCorp Nomad server.
  • ⚠️Nomad ACL Token (`NOMAD_TOKEN`) is required if ACLs are enabled on the Nomad cluster.
  • ⚠️Building from source requires a Go development environment; using pre-built binaries or npm packages might require Node.js.
Verified SafeView Analysis
The server correctly retrieves Nomad authentication tokens from environment variables, preventing hardcoded secrets. It implements origin validation for HTTP transports to mitigate cross-site request forgery (CSRF) risks. Nomad API interactions are handled by constructing URLs and JSON bodies, which generally prevents command injection. HCL job specification parsing is delegated to the Nomad API itself, reducing direct parsing vulnerabilities. No obvious use of 'eval' or other highly dangerous patterns were found in the provided server code. The npm package's `index.js` uses `childProcess.execFileSync` to run the compiled Go binary with arguments from static configuration, not directly user-provided input, thus limiting command injection risks in the wrapper.
Updated: 2025-12-08GitHub
44
38
Low Cost
drshade icon
Sec8

Provides a fully-featured Haskell library for building Model Context Protocol (MCP) servers to enable AI agent interaction.

Setup Requirements

  • ⚠️Requires a Haskell development environment (GHC, Cabal) to build and run applications using the library.
  • ⚠️Implementing advanced features requires familiarity with Haskell's type system and potentially Template Haskell.
  • ⚠️Understanding the Model Context Protocol (MCP) specification is necessary for effective server implementation.
Verified SafeView Analysis
The library implements the MCP protocol and provides abstractions for server development. Template Haskell is used for automatic handler derivation, which generates code at compile time based on defined data types, not direct runtime evaluation of untrusted input. However, metaprogramming (Template Haskell) always requires careful review. The HTTP transport enables CORS by default. No obvious hardcoded secrets or malicious patterns were found in the truncated code. The overall security posture will heavily depend on how specific handlers are implemented by the end-user of the library. The project acknowledges its AI-assisted development and plans for future refactoring for robustness.
Updated: 2026-01-19GitHub
44
16
Low Cost
datopian icon
Sec7

A remote Model Context Protocol (MCP) server deployed on Cloudflare Workers, providing AI agent tools to interact with PortalJS datasets for search, retrieval, and data preview.

Setup Requirements

  • ⚠️Requires a Cloudflare account for deployment.
  • ⚠️Requires the `wrangler` CLI to be installed for local development and deployment.
  • ⚠️The server is designed without authentication, making it publicly accessible by default. Users must implement their own authentication/authorization if sensitive operations are added or if access needs to be restricted.
Verified SafeView Analysis
The server is explicitly designed to run 'Without Auth', meaning it is publicly accessible to any client. While the tool implementations themselves perform basic input sanitization (URL encoding for queries and IDs, numeric limits for 'limit' parameters) before making external API calls to PortalJS, this lack of inherent authentication means it should not be used for sensitive data or operations without adding external authentication layers (e.g., Cloudflare Access, API Gateway keys). The use of Cloudflare Durable Objects helps isolate state per organization, which is a good practice.
Updated: 2025-11-28GitHub
44
20
High Cost
sbroenne icon

mcp-server-excel

by sbroenne

Sec7

Automate Microsoft Excel operations through natural language commands for AI assistants or via a command-line interface, including Power Query, DAX measures, VBA macros, PivotTables, Charts, Ranges, and Worksheets.

Setup Requirements

  • ⚠️Requires Windows OS (Windows 10+) and Microsoft Excel (2016+) installed. Not suitable for headless CI/CD.
  • ⚠️Requires .NET 10 Runtime or SDK to be installed.
  • ⚠️For VBA commands, 'Trust access to the VBA project object model' must be manually enabled in Excel's Trust Center settings.
  • ⚠️All Excel files must be closed before use, as the server requires exclusive access due to Excel COM limitations.
Verified SafeView Analysis
The server leverages Excel's native COM API, which is generally safer than direct file manipulation, and includes input validation, file size limits, and robust code analysis rules. However, it requires manually enabling 'Trust access to the VBA project object model' in Excel for VBA operations, which is a significant user security decision. Additionally, Power Query M-code formatting uses an external API (powerqueryformatter.com), introducing an external network dependency that, while offering graceful fallback, entails sending potentially sensitive M-code over the network. Anonymous telemetry is collected via Azure Application Insights with sensitive data redaction.
Updated: 2026-01-19GitHub
44
45
Medium Cost
ZephyrDeng icon

pprof-analyzer-mcp

by ZephyrDeng

Sec5

Analyze Go pprof performance profiles (CPU, heap, goroutine, allocs, mutex, block), identify performance bottlenecks, detect memory leaks, compare profiles, and visualize data via flame graphs.

Setup Requirements

  • ⚠️The `generate_flamegraph` tool requires Graphviz (`dot` command) to be installed and available in the system's PATH.
  • ⚠️The `open_interactive_pprof` tool is macOS-only and requires the `go` command to be in the system's PATH. It does not capture errors from the launched `pprof` process, and temporary files from remote URIs are not automatically cleaned up until the session is manually disconnected or the server exits.
  • ⚠️If running with Docker, the `pprof-analyzer-mcp` Docker image must be built locally before attempting to run the container via an MCP client.
Review RequiredView Analysis
The server can download and process profile files from arbitrary HTTP/HTTPS URIs, posing a Server-Side Request Forgery (SSRF) risk. It allows user-controlled `output_svg_path` for `generate_flamegraph`, which could potentially lead to arbitrary file overwrites or creation in unintended locations if not properly handled by the underlying `go tool pprof` command. The `open_interactive_pprof` tool has explicit limitations regarding uncaptured background process errors and temporary file cleanup for remote URIs, which could lead to resource exhaustion (e.g., disk space). Launching `go tool pprof` as a web UI with a user-specified HTTP address could expose a debugging interface if the server is publicly accessible.
Updated: 2026-01-17GitHub
44
35
Medium Cost
tomtom-international icon

tomtom-mcp

by tomtom-international

Sec9

Provides seamless access to TomTom's geospatial services for AI workflows and development environments, including search, routing, traffic, and static/dynamic maps.

Setup Requirements

  • ⚠️Requires Node.js 22.x (strict requirement for dynamic map tool, other tools may work with older/newer versions).
  • ⚠️Requires a paid TomTom API Key for access to location services.
  • ⚠️Native OS-level dependencies are required for the dynamic map tool (@maplibre/maplibre-gl-native and canvas), which can be complex to install on various operating systems.
Verified SafeView Analysis
Implements robust API key handling using environment variables and AsyncLocalStorage for per-request isolation in HTTP mode. Input validation is performed using Zod schemas to mitigate common API input-related vulnerabilities. Comprehensive error handling and uncaught exception/unhandled rejection logging are in place to prevent silent failures. Dynamic dependencies are loaded with error handling.
Updated: 2026-01-19GitHub
44
16
Medium Cost
freema icon
Sec7

Automates Firefox browser via WebDriver BiDi (through Selenium WebDriver) to interact with web pages, capture snapshots, monitor network/console, and perform user interactions.

Setup Requirements

  • ⚠️Requires a local Firefox browser installation (auto-detected or specified via --firefox-path)
  • ⚠️Requires Node.js version 20.19.0 or higher
Verified SafeView Analysis
The server's core functionality involves browser automation, which inherently grants control over a local browser instance. The `evaluate_script` tool, which would allow arbitrary JavaScript execution, is explicitly disabled in the MCP server's public interface. However, the `upload_file_by_uid` tool accepts a `filePath` argument, allowing the server to interact with the local filesystem to upload specified files. This is a common and expected feature for automation tools but poses a risk if the server is exposed to untrusted inputs, as it could be leveraged to upload arbitrary files from the host machine's accessible paths. It is recommended to run this server in a trusted environment (e.g., locally by the user or in a controlled Docker container).
Updated: 2025-12-10GitHub
44
2
Low Cost
CriticalLine icon

lean-mathlib-docs-mcp

by CriticalLine

Sec8

Provides a Minimal MCP Server for LLMs to search Lean Mathlib 4 documentation, including declarations, modules, and instances.

Setup Requirements

  • ⚠️Requires Python 3.11 or higher and specific Python packages (`requests`, `mcp-server`).
  • ⚠️Manual configuration of `mcp.json` is needed, with potential path adjustments for the Python executable and the server script (`src/lean_docs_server.py`). The provided `mcp.json` example contains a path mismatch (`lean_docs_mcp_server.py` vs `lean_docs_server.py`).
  • ⚠️The first run will download the entire Mathlib 4 documentation dataset locally.
Verified SafeView Analysis
The server downloads a data file ('declaration-data.bmp') from a trusted Lean Mathlib 4 URL via `requests.get`. This file is then loaded as JSON, which is the primary external interaction. There are no explicit uses of `eval`, `subprocess`, hardcoded secrets, or direct shell commands. The risk is minimal, assuming the remote data source remains trustworthy and the '.bmp' file is indeed JSON data, as expected by `json.load`.
Updated: 2025-11-27GitHub
PreviousPage 69 of 713Next