Stop Searching. Start Trusting.

The curated directory of MCP servers, vetted for security, efficiency, and quality.

Tired of the MCP "Marketplace" Chaos?

We built MCPScout.ai to solve the ecosystems biggest pain points.

No Insecure Dumps

We manually analyze every server for basic security flaws.

Easy Setup

Our gotcha notes warn you about complex setups.

Avoid "Token Hogs"

We estimate token costs for cost-effective agents.

Products, Not Demos

We filter out "Hello World" demos.

CATEGORIES:
SORT:

Vetted Servers(9120)

35
6
Medium Cost
Montimage icon

mitre-mcp

by Montimage

Sec9

A production-ready Model Context Protocol (MCP) server that exposes the MITRE ATT&CK® framework to LLMs, AI assistants, and automation workflows.

Setup Requirements

  • ⚠️Python 3.10+ required
  • ⚠️mitre-mcp server must be running (`mitre-mcp --http`)
  • ⚠️Initial MITRE ATT&CK data download (can be large, requiring up to 200MB disk space by default)
Verified SafeView Analysis
The project exhibits a strong focus on security: robust input validation is implemented (regex for technique IDs, length limits, character checks, domain validation) to prevent common vulnerabilities. Automated security tools (Bandit, Safety, CodeQL) are integrated into the CI/CD pipeline for continuous scanning. Best practices, such as discouraging hardcoded API keys and using HTTPS for external requests, are documented. The HTTP server defaults to binding on `localhost:8000`, with explicit warnings against public exposure without a proper reverse proxy and authentication. CORS settings are configurable. No obvious malicious patterns like `eval` or uncontrolled code execution were found.
Updated: 2025-11-26GitHub
35
5
Low Cost
conda-incubator icon

conda-meta-mcp

by conda-incubator

Sec8

Provides authoritative, read-only Conda ecosystem metadata for AI agents to answer packaging questions.

Setup Requirements

  • ⚠️Requires Python 3.13 or newer.
  • ⚠️Requires 'pixi' for local development and running the server, which manages its dependencies.
  • ⚠️The 'package_insights' tool accepts arbitrary URLs; agents should be mindful of the source to avoid downloading excessively large or unexpected files.
Verified SafeView Analysis
The server's core function involves making network requests to Conda ecosystem endpoints (conda.anaconda.org, cforge.quansight.dev) and arbitrary URLs for package tarballs via the `package_insights` tool. While no direct code execution from arbitrary URLs is apparent, this could pose a risk for resource exhaustion or parsing vulnerabilities. The `cli_help` tool's `grep` parameter uses regular expressions, which could potentially be exploited for ReDoS (Regular Expression Denial of Service) if a malicious regex is provided. However, the project adheres to a 'read-only, zero-side-effect' contract and uses established libraries.
Updated: 2026-01-17GitHub
35
5
Medium Cost
ansible icon

aap-mcp-server

by ansible

Sec8

A Model Context Protocol (MCP) service providing an OpenAPI-based interface for AI agents to interact with Ansible Automation Platform (AAP) APIs.

Setup Requirements

  • ⚠️Requires Node.js 18 or higher.
  • ⚠️Requires access to an Ansible Automation Platform instance or a mock server.
  • ⚠️Requires a valid AAP authentication token for API access.
Verified SafeView Analysis
The server offers an 'ignore-certificate-errors' option that disables HTTPS certificate validation (via NODE_TLS_REJECT_UNAUTHORIZED='0'). While explicitly noted for development/testing, it's a critical risk in production. The 'ALLOW_WRITE_OPERATIONS' flag controls access to potentially sensitive API methods (POST, PUT, PATCH, DELETE). The bundled mock AAP server is intentionally insecure (no token validation) and strictly for testing, with clear warnings. Telemetry generates a deterministic, anonymous user ID from the user token and a process-specific salt, which is a good practice.
Updated: 2026-01-19GitHub
35
6
Medium Cost
ZephyrDeng icon

mcp-server-gitlab

by ZephyrDeng

Sec9

A GitLab integration server built on the fastmcp framework, providing various GitLab RESTful API tools for interacting with GitLab instances, supporting AI agents and platforms like Claude and Smithery.

Setup Requirements

  • ⚠️Requires GitLab API URL and Token (can be provided via environment variables or HTTP headers).
  • ⚠️Requires Bun runtime for direct execution or Docker for deployment.
  • ⚠️When deploying with Docker in HTTP Stream mode, ensure MCP_HOST is configured to '0.0.0.0' for external access (though this is the default for httpStream mode).
Verified SafeView Analysis
The server employs dynamic authentication via HTTP headers for GitLab tokens and API URLs in HTTP stream mode, enhancing security by avoiding hardcoded credentials. It also includes explicit sensitive content masking, replacing identifiable data with '***' or 'prefix***suffix', while preserving legitimate GitLab URLs. The 'Gitlab Raw API Tool' offers broad access to GitLab APIs, which is powerful but requires callers to be trusted and properly authorized by the server's authentication layer. Basic validation for token length and URL format is implemented.
Updated: 2026-01-19GitHub
35
6
High Cost

A Node.js implementation of the Zoho Analytics Model Context Protocol (MCP) Server that provides seamless integration between Zoho Analytics and MCP Hosts such as VS Code, Claude Desktop, Cursor, and more, enabling direct access to Zoho Analytics data.

Setup Requirements

  • ⚠️Requires Zoho Account OAuth credentials (Client ID, Client Secret, Refresh Token, Organization ID).
  • ⚠️Requires Node.js (LTS version recommended) for the NPX installation, or Docker for containerized deployment.
  • ⚠️Requires an MCP Host Application (e.g., VS Code, Claude Desktop, Cursor) for interaction.
  • ⚠️The `query_data` tool executes user-provided SQL queries, posing a potential SQL injection risk if the AI agent is not strictly controlled.
  • ⚠️The `download_file` tool can download arbitrary files from URLs to local storage, which could be exploited for malicious purposes (e.g., malware download, disk exhaustion).
  • ⚠️For the remote (Python) hosted version, additional environment variables related to the OAuth proxy and persistence (e.g., `MCP_SERVER_PUBLIC_URL`, `SESSION_SECRET_KEY`, `REDIS_HOST`, `CATALYST_PROJECT_ID`) are required for full functionality.
Verified SafeView Analysis
The server correctly loads sensitive OAuth credentials (client ID, client secret, refresh token) from environment variables, which is good practice. However, several tools expose functionality that carries inherent risks when driven by an AI agent: - **`query_data` tool**: Executes arbitrary SQL queries provided as a string input. If the AI agent is compromised or poorly constrained, this could lead to SQL injection vulnerabilities if the underlying Zoho Analytics API does not perform sufficient sanitization for all possible malicious SQL constructs. - **`download_file` tool**: Allows downloading files from any specified URL to a local temporary directory. This poses a risk for downloading malicious executables or excessively large files, potentially leading to denial-of-service (DoS) via disk space exhaustion. - **OAuth Proxy (Python version)**: The Python implementation includes a dynamic client registration (DCR) mimicry layer. While designed to bridge a provider limitation (static client registration only), this adds a layer of complexity to the authentication flow, increasing the potential attack surface if not perfectly secured. It utilizes persistence (in-memory, Redis, or Catalyst) for authorization transactions and codes, which should be properly secured in production environments. Overall, while the server itself does not contain obvious malicious code or hardcoded secrets, the power of its exposed tools requires careful management of the AI agent's inputs and environment sandboxing.
Updated: 2026-01-14GitHub
35
4
Medium Cost
vladzima icon

workflowy-mcp

by vladzima

Sec9

Integrates WorkFlowy's outline and task management capabilities as tools for LLM applications via the Model Context Protocol (MCP).

Setup Requirements

  • ⚠️Requires a WorkFlowy account with API access and a generated API key.
  • ⚠️The WorkFlowy API has significant discovery limitations (no direct search by name/content, hierarchical navigation only, incompatible web IDs) which impacts LLM usability for finding existing nodes.
  • ⚠️Requires manual configuration in an MCP-compatible client's JSON configuration file (e.g., Claude Desktop).
Verified SafeView Analysis
The server follows good security practices, including requiring API keys via environment variables (WORKFLOWY_API_KEY), using Pydantic's SecretStr for API keys to prevent accidental logging, enforcing HTTPS for the API base URL, and redacting sensitive information like API keys from logs. Robust error handling for various HTTP statuses (401, 404, 429, 5xx) is implemented. There is no evidence of 'eval' or other directly dangerous patterns in the provided source code.
Updated: 2025-12-13GitHub
35
5
Medium Cost
Sec2

The server provides a Model Context Protocol (MCP) interface to PyVista for 3D visualization and mesh processing, offering tools to create, manipulate, and export 3D models.

Setup Requirements

  • ⚠️Requires Python 3.12 or newer.
  • ⚠️Dependencies include 'pyvista[all]' which may have complex installation requirements for its visualization backends.
  • ⚠️Vulnerable to directory traversal attacks through file path arguments.
Review RequiredView Analysis
The server's tools accept file paths (filename, output_filename, other_filename) directly from user input via the MCP without any path sanitization or validation. This makes the server vulnerable to directory traversal attacks, potentially allowing an attacker to read, write, or overwrite arbitrary files outside the intended working directory on the server's filesystem.
Updated: 2026-01-12GitHub
35
1
Medium Cost
yasg1988 icon

mcp-rosreestr

by yasg1988

Sec9

MCP Server for retrieving cadastral data (coordinates, addresses, property information) from Rosreestr based on cadastral numbers.

Setup Requirements

  • ⚠️Requires `ROSREESTR_API_TOKEN` environment variable to be set for API access.
  • ⚠️If operating outside Russia, `ROSREESTR_API_URL` must point to an API proxy with a Russian IP, or the `rosreestr2coord` library (used for direct access) will not function correctly.
  • ⚠️The `.mcp.json` configuration requires the full, absolute path to `server.py`.
Verified SafeView Analysis
The server correctly loads API tokens from environment variables, preventing hardcoding. It relies on external APIs (ipapi.co for IP checks, and a Rosreestr API proxy or direct rosreestr2coord library for data retrieval), which inherently involves third-party dependencies and network requests. No 'eval' or similar dangerous patterns are observed.
Updated: 2025-11-25GitHub
35
4
Low Cost

developer-mcp

by googleworkspace

Sec7

This repository appears to be a JavaScript/TypeScript project, likely an SDK, library, or development tool, built for developers.

Setup Requirements

  • ⚠️Requires pnpm package manager.
  • ⚠️Requires Node.js runtime.
  • ⚠️No explicit setup or usage instructions due to missing README.md.
Verified SafeView Analysis
Without access to source code in the 'src' directory, a full security audit for 'eval', obfuscation, or specific network vulnerabilities is not possible. The presence of 'tsconfig.json' and 'biome.json' suggests a structured, modern development approach, which generally correlates with better code quality and fewer common vulnerabilities. No immediate red flags were identified from the file list.
Updated: 2025-11-18GitHub
35
4
Low Cost

A FastMCP server that integrates with the REI3 Tickets application, enabling MCP clients to manage tickets, worklogs, and retrieve ticket information.

Setup Requirements

  • ⚠️Python 3.13.5 is a specific version requirement for manual installation.
  • ⚠️Requires a designated user in REI3 with 'Tickets API role' and an 'API Profile' set up in the REI3 instance.
  • ⚠️The FastMCP disk storage backend is currently blocking new release builds, making manual or Docker installation the primary methods.
  • ⚠️Extensive configuration required in `config.ini` for REI3 API access and potentially OIDC Proxy settings, all of which are critical for functionality and security.
Verified SafeView Analysis
The server relies heavily on a `config.ini` file for sensitive credentials, including REI3 API username/password, and potentially OIDC client secrets and encryption keys. The security of the server is directly tied to the proper securing of this configuration file. No hardcoded secrets were found in the source code. It uses `httpx` for secure asynchronous HTTP requests and can be configured with SSL. OIDC proxy functionality includes encryption for client storage.
Updated: 2025-12-11GitHub
35
5
Low Cost
joelverhagen icon

mcp-insights

by joelverhagen

Sec9

Automatically collects, analyzes, and reports on the public Model Context Protocol server registry, generating trend data and statistics.

Setup Requirements

  • ⚠️Requires Node.js for SVG chart rendering.
  • ⚠️Requires PowerShell for script execution.
Verified SafeView Analysis
The project functions as a client-side data collection and reporting tool, making outgoing network requests to a public registry endpoint. It processes data locally using PowerShell and Node.js. No 'eval' or similar dynamic code execution is evident in the provided snippets, nor are there signs of hardcoded secrets. It does not expose any services or process untrusted user input directly, making it relatively safe for its stated purpose as a data analysis and reporting client.
Updated: 2026-01-19GitHub
35
1
Medium Cost
feedback-loop-ai icon

mcp-ory-kratos

by feedback-loop-ai

Sec9

MCP server for AI agents to manage Ory Kratos identities, sessions, and authentication flows, supporting developers in Claude Code, GitHub Copilot, or Gemini CLI workflows.

Setup Requirements

  • ⚠️Requires a running Ory Kratos instance with Admin API access.
  • ⚠️Requires Node.js 18+ or Bun 1.x installed.
  • ⚠️Authentication to Kratos Admin API (API key or custom headers) might be required, otherwise KRATOS_AUTH_TYPE=none must be configured.
  • ⚠️An MCP-compatible client (Claude Code, GitHub Copilot, or Gemini CLI) is needed to interact with the server.
Verified SafeView Analysis
The server acts as a proxy to the Ory Kratos Admin API. It loads sensitive credentials (API keys, custom headers) from environment variables, which is a standard and secure practice. Logging explicitly avoids sensitive data like credentials or PII traits. The security posture is highly dependent on the secure configuration and operational environment of the underlying Kratos instance and the network where this server runs.
Updated: 2026-01-19GitHub
PreviousPage 143 of 760Next