Stop Searching. Start Trusting.

The curated directory of MCP servers, vetted for security, efficiency, and quality.

Browse DirectoryWhy Us?

Tired of the MCP "Marketplace" Chaos?

We built MCPScout.ai to solve the ecosystems biggest pain points.

No Insecure Dumps

We manually analyze every server for basic security flaws.

Easy Setup

Our gotcha notes warn you about complex setups.

Avoid "Token Hogs"

We estimate token costs for cost-effective agents.

Products, Not Demos

We filter out "Hello World" demos.

CATEGORIES:
SORT:

Vetted Servers(8554)

41
25
Medium Cost
algolia icon

mcp

by algolia

Sec9

The MCP server acts as an intermediary, enabling Large Language Models (LLMs) to interact with Algolia's various APIs for search, analytics, A/B testing, query suggestions, recommendations, monitoring, and usage data.

Setup Requirements

  • ⚠️Requires Go (GoLang) to build and run the server.
  • ⚠️Mandatory Algolia API credentials (ALGOLIA_APP_ID, ALGOLIA_API_KEY, ALGOLIA_INDEX_NAME) must be provided as environment variables. ALGOLIA_WRITE_API_KEY is also required for write operations, implying a paid Algolia account for full functionality.
  • ⚠️Requires a Model Context Protocol (MCP) host or inspector (e.g., Claude Desktop, @modelcontextprotocol/inspector, or mark3labs/mcphost) to interact with the server's exposed tools.
Verified SafeView Analysis
The server correctly retrieves Algolia API credentials (application ID, API keys, index name) from environment variables, preventing hardcoded secrets. Outbound HTTP requests are made to legitimate Algolia API endpoints. No 'eval' or similar dynamic code execution patterns are observed. The underlying `mcp-go` library for Model Context Protocol is also used, which is a standard approach for this kind of server. Overall, the code appears robust against common security vulnerabilities for its stated purpose.
Updated: 2025-11-27GitHub
41
27
Medium Cost
Couchbase-Ecosystem icon

mcp-server-couchbase

by Couchbase-Ecosystem

Sec9

An MCP server enabling LLMs to interact directly with Couchbase clusters for data operations, schema retrieval, and query performance analysis.

Setup Requirements

  • ⚠️Requires a running Couchbase cluster (e.g., Capella free tier).
  • ⚠️Requires Python 3.10 or higher and 'uv' package manager installed.
  • ⚠️Authentication to the Couchbase cluster is critical, requiring either username/password or client certificates via environment variables or CLI arguments.
Verified SafeView Analysis
The server transparently prevents data/structure modification via SQL++ queries by default (CB_MCP_READ_ONLY_QUERY_MODE=true) using `lark_sqlpp` for query parsing and validation. Authentication credentials are sourced from environment variables or CLI arguments, preventing hardcoded secrets. Network communication for index management uses HTTPS with appropriate SSL verification mechanisms. Key-Value operations (upsert, delete) can still modify data even in read-only query mode, which is clearly documented. No 'eval' or malicious patterns were found.
Updated: 2026-01-16GitHub
41
25
Low Cost
alexwohletz icon

language-server-mcp

by alexwohletz

Sec3

Provides language support features like hover information, code completion, and diagnostics for code editing through the Model Context Protocol (MCP).

Setup Requirements

  • ⚠️Requires specific language servers (e.g., `typescript-language-server`, `pyright`) to be pre-installed on the system.
  • ⚠️Requires configuring language server commands and arguments via environment variables (e.g., `TYPESCRIPT_SERVER='{"command": "typescript-language-server", "args": ["--stdio"]}'`) before running.
  • ⚠️Tools require an accurate `projectRoot` parameter for correct language server operation, which can be challenging for an agent to determine consistently.
Review RequiredView Analysis
The server dynamically spawns external language server processes based on configurations read from environment variables (e.g., `process.env.TYPESCRIPT_SERVER`). If an attacker can control these environment variables, they could inject arbitrary shell commands to be executed by the `child_process.spawn` call, leading to remote code execution. While the README implies user configuration for local development, in an automated or untrusted AI agent context, this presents a significant command injection vulnerability. Uses of `eval` found in coverage report utility files are not part of the core server's runtime logic.
Updated: 2025-11-26GitHub
41
15
High Cost
TheInformationLab icon

tableau_mcp_starter_kit

by TheInformationLab

Sec7

Provides a powerful AI integration for Tableau Server/Cloud, enabling natural language querying and interaction with Tableau data via a web interface or dashboard extension.

Setup Requirements

  • ⚠️Requires Tableau Server Version 2025.1+ or Tableau Cloud.
  • ⚠️Requires Python 3.12+ and Node.js (tested with 22.15.0 LTS) with npm installed.
  • ⚠️Requires an OpenAI API Key (paid service) and Tableau Personal Access Token (PAT) for default operation.
  • ⚠️The `TABLEAU_MCP_FILEPATH` environment variable must be manually set to the local build path of the `tableau-mcp` repository (or `tableau-mcp-experimental` for dashboard extension mode).
Verified SafeView Analysis
The default configuration sends data from Tableau to an external AI model (OpenAI). The README explicitly warns about this data egress risk and recommends using a local AI model for sensitive data. Personal Access Tokens (PATs) for Tableau are stored in the .env file, which is protected by .gitignore, but still requires secure handling. The `TABLEAU_MCP_FILEPATH` points to a local Node.js build, whose integrity depends on the upstream `tableau-mcp` (and `tableau-mcp-experimental`) repositories and secure build practices.
Updated: 2025-12-01GitHub
41
27
Medium Cost
ivelin-web icon

tempo-mcp-server

by ivelin-web

Sec9

Manages Tempo worklogs in Jira via a Model Context Protocol (MCP) server, allowing time tracking and worklog operations through MCP-compatible clients.

Setup Requirements

  • ⚠️Requires Node.js 18+ (LTS recommended).
  • ⚠️Requires manual generation of Tempo API Token and Jira API Token with appropriate permissions.
  • ⚠️JIRA_EMAIL is mandatory for Basic Authentication, necessitating careful configuration of JIRA_AUTH_TYPE.
  • ⚠️JIRA_TEMPO_ACCOUNT_CUSTOM_FIELD_ID is required if Tempo mandates account linking to Jira issues, requiring manual lookup of the custom field ID.
Verified SafeView Analysis
The server uses Zod for robust input validation on all tool parameters and environment variables, mitigating common injection risks. Sensitive API tokens and credentials are strictly sourced from environment variables, preventing hardcoding. Authentication for Jira supports both basic (email:token) and bearer (OAuth 2.0) methods securely. Error handling logs details internally and returns user-friendly messages to the client, limiting information exposure. No 'eval' or obvious obfuscation patterns were found.
Updated: 2025-12-04GitHub
41
25
Medium Cost
klapaudius icon

symfony-mcp-server

by klapaudius

Sec5

Build intelligent AI agents by transforming Symfony applications into Model Context Protocol (MCP) servers, enabling LLM interaction with application logic, tools, prompts, and resources.

Setup Requirements

  • ⚠️Requires a production-ready web server setup (Nginx + PHP-FPM, Apache + PHP-FPM, or Docker) as 'symfony server:start' is not supported for concurrent connections.
  • ⚠️Requires explicit implementation of authentication (e.g., OAuth2) for production environments, as it's not provided by default.
  • ⚠️Requires a Redis server or a Symfony cache pool for the SSE adapter, which needs to be properly configured and accessible.
Review RequiredView Analysis
The server uses secure transports (StreamableHTTP and SSE) but explicitly notes that OAuth2 authentication is 'strongly recommended' for production use, implying it's not provided out-of-the-box. This means deploying without additional security measures would expose the API. The configuration also relies on a properly secured Redis or Cache backend for message queuing.
Updated: 2026-01-13GitHub
41
22
Medium Cost
mytechnotalent icon

MalwareBazaar_MCP

by mytechnotalent

Sec8

An AI-driven MCP server interfacing with Malware Bazaar for real-time threat intelligence and sample metadata, supporting cybersecurity research workflows.

Setup Requirements

  • ⚠️Requires MalwareBazaar API Key (free registration on abuse.ch).
  • ⚠️Requires `uv` package manager for virtual environment setup and script execution.
  • ⚠️Downloads malware samples (password 'infected') directly to the current working directory (os.getcwd()).
Verified SafeView Analysis
The server's explicit purpose is to retrieve and potentially download malware samples from MalwareBazaar. Downloaded files are saved to the current working directory, which requires users to be mindful of where they run the server and to handle downloaded files with extreme caution (they are password-protected with 'infected'). API keys are loaded securely from environment variables. No 'eval', obfuscation, or other highly dangerous code patterns are observed in the provided source.
Updated: 2025-11-26GitHub
41
43
Low Cost
Azure-Samples icon

mcp-container-ts

by Azure-Samples

Sec8

Provides a secure, extensible Model Context Protocol (MCP) server using Node.js and TypeScript, designed to expose custom tools to LLMs, deployable on Azure Container Apps with robust JWT and RBAC security.

Setup Requirements

  • ⚠️Requires Node.js v22.0.0 or higher.
  • ⚠️Requires manual generation and secure management of a JWT token (`JWT_SECRET`, `JWT_TOKEN`) for authentication, especially in production environments.
  • ⚠️Local development with remote AI clients requires exposing the server to the internet using a tunneling service like `devtunnel`.
  • ⚠️An OpenAI API Key is needed to run the provided client examples, not for the MCP server itself.
Verified SafeView Analysis
The server implements JWT-based authentication and role-based access control (RBAC) with granular permissions for tools. It uses `helmet` for security headers, `cors` for origin control, `express.json` with payload limits, and `express-rate-limit` for DDoS protection. SQL operations use prepared statements to prevent injection. Logs redact sensitive data in non-development environments. The `generate-token` script explicitly warns about token management, which is crucial for production deployments. The JSON-RPC validation middleware is commented out by default, which could be a minor security oversight if not enabled in production.
Updated: 2026-01-07GitHub
41
40
Medium Cost
boykush icon

scraps

by boykush

Sec9

The Scraps MCP server provides an interface for AI assistants to interact with a knowledge base of interconnected Markdown documentation, enabling features like content search, tag listing, and link/backlink lookup.

Setup Requirements

  • ⚠️Requires the `git` command-line tool for some functionality (e.g., getting commit timestamps).
  • ⚠️MCP server operates over `stdin`/`stdout` and requires an `rmcp`-compatible client or AI assistant integration for external access.
  • ⚠️Recommended development environment setup uses `mise` to manage Rust, Node.js, and other tools.
Verified SafeView Analysis
The server component itself uses `rmcp` for inter-process communication primarily over `stdin`/`stdout`, limiting direct network exposure for the MCP tools. Input is handled using `serde` for deserialization and `schemars::JsonSchema` for validation, which helps mitigate malformed input risks. Path handling for accessing scrap files is done using `PathBuf` and `join` methods, which generally prevent path traversal issues. Markdown parsing (`pulldown-cmark`) and fuzzy searching (`fuzzy-matcher`) are performed by well-regarded libraries. No explicit `eval` or similar dynamic code execution patterns are observed. The system relies on a locally controlled project directory, which is a key security boundary. A point is deducted for the inherent complexity of file system interactions and potential undiscovered vulnerabilities in external dependencies.
Updated: 2026-01-18GitHub
41
55
Medium Cost
SigNoz icon
Sec9

Integrates SigNoz observability data, including metrics, traces, logs, alerts, and dashboards, with AI assistants and LLMs for natural language querying and management.

Setup Requirements

  • ⚠️Requires a running SigNoz instance with API access and a valid API key.
  • ⚠️Go 1.25+ is required if building the server from source.
  • ⚠️Requires specific client-side configuration for MCP-compatible AI assistants (e.g., Claude Desktop, Cursor) or manual setup for HTTP-based self-hosting.
Verified SafeView Analysis
The server handles API keys via environment variables or Authorization headers, preventing hardcoding. Network requests to the SigNoz API have explicit timeouts (600s or 30s). An authentication middleware is implemented for HTTP transport mode, validating the API key source. No obvious vulnerabilities like 'eval' or malicious patterns were found.
Updated: 2026-01-02GitHub
41
19
Medium Cost
epicweb-dev icon

mcp-auth

by epicweb-dev

Sec8

Serves as an AI agent interface for the EpicMe journaling application, enabling AI to interact with journal entries and tags via the Model Context Protocol.

Setup Requirements

  • ⚠️Requires a local companion EpicMe application server to be running on port 7788, which acts as the OAuth authorization server and database API. This is automatically started during test setup but is a prerequisite for local development.
  • ⚠️The server is designed for deployment on Cloudflare Workers, necessitating a Cloudflare account and familiarity with the Wrangler CLI for setup and management.
  • ⚠️Utilizes specialized Model Context Protocol (MCP) development tools (e.g., `mcp-dev`, `mcp-inspector`) for local development and debugging workflows.
Verified SafeView Analysis
The server employs Zod for robust input validation and delegates authentication to a local OAuth introspection endpoint, which are sound security practices. CORS headers are appropriately configured for public discovery endpoints, preventing broader access issues. No 'eval' or code obfuscation techniques were identified. While the `EPIC_ME_AUTH_SERVER_URL` is hardcoded to a localhost address for development, this is a configuration detail rather than a direct security vulnerability, though it would require environment variable configuration for a production deployment. The use of Cloudflare Durable Objects provides inherent isolation and security benefits.
Updated: 2026-01-19GitHub
41
22
Medium Cost
amirsina-mandegari icon

gitlab-mr-mcp

by amirsina-mandegari

Sec9

Connects an AI assistant to GitLab to manage merge requests, CI/CD pipelines, and code reviews, enabling natural language interaction.

Setup Requirements

  • ⚠️Requires GITLAB_PROJECT_ID environment variable.
  • ⚠️Requires GITLAB_ACCESS_TOKEN environment variable with 'read_api' (or 'api' for write access) scope.
  • ⚠️Requires Python 3.10 or higher.
Verified SafeView Analysis
The server uses environment variables for sensitive credentials (GitLab URL, project ID, access token), preventing hardcoding. API calls are made using aiohttp for standard and secure asynchronous HTTP communication. Input validation for tool arguments is performed via Pydantic schemas, reducing injection risks. There are no direct uses of 'eval' or 'exec' on user-controlled input. Pagination is handled correctly for API calls to prevent excessive memory usage. The project utilizes security linters like Bandit, indicating a focus on secure development practices.
Updated: 2026-01-17GitHub
PreviousPage 84 of 713Next