Stop Searching. Start Trusting.

The curated directory of MCP servers, vetted for security, efficiency, and quality.

Browse DirectoryWhy Us?

Tired of the MCP "Marketplace" Chaos?

We built MCPScout.ai to solve the ecosystems biggest pain points.

No Insecure Dumps

We manually analyze every server for basic security flaws.

Easy Setup

Our gotcha notes warn you about complex setups.

Avoid "Token Hogs"

We estimate token costs for cost-effective agents.

Products, Not Demos

We filter out "Hello World" demos.

CATEGORIES:
SORT:

Vetted Servers(7756)

52
74
Low Cost
mkreyman icon
Sec8

Provides persistent context management for Claude AI coding assistants, ensuring work history, decisions, and progress are preserved across sessions and context limits.

Setup Requirements

  • ⚠️Requires the Claude AI CLI (`claude` command) to be installed.
  • ⚠️Requires a local Git installation for Git integration features.
  • ⚠️Stores all data locally in `~/mcp-data/memory-keeper/`, requiring local disk space.
Verified SafeView Analysis
The server operates locally via standard I/O (stdio) reducing common network attack vectors. Input validation is applied for keys, values, and file paths to prevent injection and path traversal. SQLite is used with parameterized queries to mitigate SQL injection risks. Git operations use the `simple-git` library, which generally sanitizes commands, assuming a trusted local environment for Git execution. No hardcoded secrets were identified. The primary security risk lies in potential misuse of local file system access by the AI if malicious commands are somehow crafted via context, though strong input validation significantly reduces this risk.
Updated: 2025-12-10GitHub
52
16
Low Cost
gabrielserrao icon

pyrestoolbox-mcp

by gabrielserrao

Sec9

Provides AI agents with comprehensive reservoir engineering calculations for PVT analysis, well performance, geomechanics, and reservoir simulation support.

Setup Requirements

  • ⚠️Strict adherence to 'Field Units (US Oilfield)' (e.g., psia, degF, ft, mD) is required for all inputs and outputs.
  • ⚠️When integrating with Claude Desktop, absolute paths to the 'uv' executable and the project directory are required in the `claude_desktop_config.json`.
Verified SafeView Analysis
The server wraps the `pyResToolbox` scientific library and uses Pydantic for input validation, which helps mitigate common injection risks. Network services (HTTP/SSE) are exposed via Docker Compose, which is standard for FastMCP. No apparent hardcoded secrets or malicious patterns observed. Overall, it appears safe given its scientific computation nature.
Updated: 2025-12-13GitHub
52
5
Medium Cost
tegwin icon

AutotaskMCP

by tegwin

Sec8

Manage Autotask PSA (Professional Services Automation) data, including tickets, companies, contacts, time entries, and resources, through a Claude Desktop MCP server.

Setup Requirements

  • ⚠️Requires an existing Autotask account with API access and generated API credentials (Username, Secret, Integration Code, API URL).
  • ⚠️Requires manual configuration of Claude Desktop's `claude_desktop_config.json` file with the absolute path to `autotask_mcp.py`.
  • ⚠️Requires specific Python libraries to be installed (`mcp`, `httpx`, `pydantic`).
Verified SafeView Analysis
The server correctly uses environment variables for sensitive API credentials, avoiding hardcoded secrets. HTTP requests are made using the httpx library, a standard and secure choice. There are no direct uses of 'eval', obfuscation, or obvious malicious patterns. The '_make_request' function logs 'response.text' on errors, which in a rare edge case could expose sensitive data if the Autotask API includes it in an error message. The `GetPicklistValuesInput.entity` parameter allows querying metadata for arbitrary entity names, which while not an arbitrary URL injection, could potentially reveal information about the Autotask API structure or lead to unnecessary API calls if misused by the LLM.
Updated: 2025-11-24GitHub
52
81
High Cost
imbenrabi icon
Sec8

Enables AI assistants to fetch and analyze comprehensive financial market data, company fundamentals, and economic indicators from Financial Modeling Prep.

Setup Requirements

  • ⚠️Requires a Financial Modeling Prep (FMP) API access token (usage might incur costs based on FMP's pricing tiers).
  • ⚠️Requires Node.js (v18+) and npm/npx installed, or Docker.
  • ⚠️Requires active internet access to communicate with the Financial Modeling Prep API.
Verified SafeView Analysis
The server correctly uses environment variables or CLI arguments for API token management, avoiding hardcoded secrets. It relies on standard `axios` for HTTP requests. Client-level caching is implemented with LRU and TTL, a common pattern, but could be a vector for denial-of-service if `maxSize` or `ttl` are inadequately configured for high-traffic or untrusted environments. No direct `eval` or obfuscation observed.
Updated: 2025-12-06GitHub
52
96
Medium Cost
kukapay icon

freqtrade-mcp

by kukapay

Sec8

Integrates an AI agent with the Freqtrade cryptocurrency trading bot to enable automated trading operations via its REST API.

Setup Requirements

  • ⚠️Requires Python 3.13+.
  • ⚠️A running Freqtrade instance with its REST API enabled and properly configured (e.g., `api_server` section enabled, correct username/password).
  • ⚠️Requires environment variables `FREQTRADE_API_URL`, `FREQTRADE_USERNAME`, `FREQTRADE_PASSWORD` to be set with Freqtrade API credentials.
Verified SafeView Analysis
The server relies on environment variables for sensitive Freqtrade API credentials (URL, username, password), which is a good practice. It directly passes user-provided parameters to the `freqtrade-client` library without obvious direct code injection vulnerabilities (e.g., `eval`, `exec`). The `place_trade` function includes basic input validation for the 'side' parameter. The primary security risks would stem from vulnerabilities within the `freqtrade-client` library, the Freqtrade REST API itself, or improper handling of environment variables in the deployment environment. There are no clear indications of malicious patterns or severe code-level security flaws in the provided source.
Updated: 2025-12-06GitHub
52
86
High Cost
Azure-Samples icon

snippy

by Azure-Samples

Sec9

An AI-powered serverless code snippet manager that uses Azure Functions as MCP tools for AI assistants like GitHub Copilot, leveraging vector search and multi-agent orchestration for documentation and style guide generation.

Setup Requirements

  • ⚠️Requires Azure Subscription (Paid services for Azure OpenAI, Cosmos DB, Functions, etc.)
  • ⚠️Requires GitHub Account with Copilot (for full MCP tool integration)
  • ⚠️Requires Docker Desktop (for local Durable Task Scheduler and Azurite emulators)
  • ⚠️Requires Python 3.11+
Verified SafeView Analysis
The project follows strong security practices for Azure cloud environments, utilizing Azure Managed Identity (User-Assigned) and Azure AD authentication (`DefaultAzureCredential`) for service-to-service communication. Azure CLI login provides local development authentication without hardcoding secrets. The `setup-app-registration.sh` script dynamically configures an Azure AD application and pre-authorizes GitHub Copilot. The README explicitly advises thorough security review for production, recommending Key Vault, Private Endpoints, and network restrictions. No 'eval' or obvious obfuscation found.
Updated: 2025-12-01GitHub
52
88
Low Cost
sirkirby icon
Sec8

Programmatically manage and monitor a UniFi Network Controller, enabling automation, custom workflows, and data processing.

Setup Requirements

  • ⚠️Requires a running UniFi Network Controller with API access.
  • ⚠️Requires `UNIFI_HOST`, `UNIFI_USERNAME`, `UNIFI_PASSWORD` environment variables to be set.
  • ⚠️The default `UNIFI_VERIFY_SSL=false` setting is insecure; it should be explicitly set to `true` in production.
  • ⚠️Python 3.9+ is recommended due to typing features used in the codebase.
Verified SafeView Analysis
The project demonstrates robust input validation using JSON schemas, a granular permission system for tool access, and confirmation prompts for destructive actions. Sensitive information (like API keys) is managed via environment variables and redacted from logs. The primary security concern is the default setting `UNIFI_VERIFY_SSL=false` in the `ConnectionManager`, which disables SSL certificate verification and can expose the connection to Man-in-the-Middle (MITM) attacks if not explicitly overridden to `true` in production environments. Additionally, while input validation is strong, no explicit input sanitization beyond schema validation is detailed for all textual inputs, though this is generally sufficient for structured API calls.
Updated: 2025-12-12GitHub
52
85
Medium Cost
aliyun icon
Sec4

The server provides a Model Context Protocol (MCP) interface for AI assistants to manage Alibaba Cloud resources such as ECS, RDS, VPC, OSS, and CloudMonitor through API and OOS integrations.

Setup Requirements

  • ⚠️Requires an Alibaba Cloud account with appropriate IAM permissions.
  • ⚠️Alibaba Cloud Access Key ID and Secret (or Security Token) must be configured via environment variables or HTTP headers.
  • ⚠️Requires `uv` (Astral's Python package installer/runner) for easy installation and execution.
  • ⚠️Requires Python 3.10 or higher.
Review RequiredView Analysis
The `OOS_RunCommand` tool allows executing arbitrary commands on Alibaba Cloud ECS instances. When used in an AI assistant context, this poses a critical Remote Code Execution (RCE) risk if the AI generates unexpected or malicious commands, or if a user provides such input. While this functionality is intended for operations, the server itself does not implement content-based command validation or stringent AI safety guards, relying heavily on external policy enforcement (e.g., IAM roles, prompt engineering, human in the loop) which are not part of this codebase. Credentials are handled via environment variables or HTTP headers (x-acs-accesskey-id, x-acs-accesskey-secret, x-acs-security-token), which requires secure management by the user or client.
Updated: 2025-11-28GitHub
52
97
Low Cost
kukapay icon
Sec8

Provides an MCP server with over 50 cryptocurrency technical analysis indicators and strategies to empower AI trading agents in analyzing market trends and developing quantitative strategies.

Setup Requirements

  • ⚠️Requires Node.js v18.x or higher and npm v8.x or higher.
  • ⚠️Requires configuration within an MCP client (e.g., Claude Desktop) to define the `command`, `args`, and `env` for the server.
  • ⚠️The `EXCHANGE_NAME` environment variable determines the data source (defaults to Binance, but can be configured to any ccxt-supported exchange).
Verified SafeView Analysis
The server fetches public OHLCV data from cryptocurrency exchanges using `ccxt`. While it uses an environment variable for the exchange name, no hardcoded API keys or sensitive credentials were found. The tool functions execute calculations on fetched data and return JSON, with no apparent 'eval' or other highly dangerous patterns. Network risks are limited to fetching market data from a configured exchange, which is standard for this type of application.
Updated: 2025-12-06GitHub
52
18
Medium Cost
isakskogstad icon

Riksdag-Regering-MCP

by isakskogstad

Sec9

Provides LLMs with real-time access to open data, documents, and records from the Swedish Parliament (Riksdagen) and Government Offices (Regeringskansliet) via their public APIs.

Setup Requirements

  • ⚠️Node.js 20+ required.
  • ⚠️Requires active internet connection to data.riksdagen.se and g0v.se.
  • ⚠️For HTTP mode, an optional API_KEY environment variable can be set for authentication (x-api-key header).
Verified SafeView Analysis
The server is stateless, fetches data directly from trusted public APIs (data.riksdagen.se, g0v.se), and employs Zod for input validation and `express-rate-limit` for request limiting. CORS is open by default, requiring configuration for public deployments to restrict client domains. There are no hardcoded secrets or usage of dangerous functions like `eval`.
Updated: 2025-12-02GitHub
52
18
Medium Cost
KSAklfszf921 icon

Riksdag-Regering-MCP

by KSAklfszf921

Sec9

Enables LLMs to query and retrieve real-time open data, documents, protocols, and records from the Swedish Parliament (Riksdagen) and Government Offices (Regeringskansliet).

Setup Requirements

  • ⚠️Requires Node.js 20+
  • ⚠️Requires active internet connection to data.riksdagen.se and g0v.se APIs
Verified SafeView Analysis
Robust input validation using Zod schemas for all tool arguments. Output sanitization and response size limits (max 5MB, 500 items default) prevent oversized responses. Rate limiting (100 requests/15 min/IP) is implemented for HTTP endpoints and internal API calls. No external database or persistent file storage is used, reducing data breach risks. Authentication via an optional `API_KEY` environment variable protects public HTTP deployments. It exclusively interacts with trusted, public APIs (data.riksdagen.se, g0v.se). No 'eval' or other obviously malicious patterns were found. CORS is open by default, which can be a minor risk if not restricted in a public deployment, but is documented as configurable.
Updated: 2025-12-02GitHub
51
121
High Cost
xiesx123 icon

CreatorBox

by xiesx123

Sec2

An MCP server for content creation, providing tools for video/audio translation, dubbing, speech recognition, speech synthesis, video mask inpainting, and watermark removal by integrating various AI models.

Setup Requirements

  • ⚠️Obfuscated Python Code: The core application logic is obfuscated with Pyarmor, preventing full security audit and verification of expected behavior.
  • ⚠️API Keys/Tokens Required: Requires multiple external API keys/tokens (e.g., GEMINI_API_KEY, OPENAI_API_KEY, HUGGINGFACEHUB_API_TOKEN, AZURE_API_KEY, ELEVENLABS_API_KEY) for various AI services, some of which may be paid or rate-limited.
  • ⚠️External Software Dependencies: Requires manual installation or management of external tools like `aria2c` (for downloads) and `ffmpeg` (for media processing).
  • ⚠️GPU Recommended: For optimal performance of AI-intensive tasks (e.g., video processing, large language models), a dedicated GPU is highly recommended.
Review RequiredView Analysis
The project extensively uses `Pyarmor 9.1.2 (trial)` to obfuscate its Python source code. This is a critical security concern as it prevents a thorough analysis of the actual runtime logic, making it impossible to verify the absence of malicious code or hidden functionalities. The application exposes a FastAPI server with various endpoints, and also offers `ngrok` tunnel integration via the CLI, which can expose local services to the internet. Without transparent code, these network exposures are high-risk. Firebase is used for authentication and database, which is generally secure but relies on correct implementation within the obfuscated code.
Updated: 2025-12-15GitHub
PreviousPage 50 of 647Next