llm-kb
← Back to products
Productlaunched

Automated MCP server security scoring index

A trust index that automatically scores MCP servers from the official registry based on security criteria like runtime guardrails and SAST scans. It helps security professionals quickly assess whether an MCP server is safe for enterprise use, reducing manual review bottlenecks.

Visit project ↗
1 engagement·1 source·Sat, Jul 11, 2026, 06:57 PM
The index pulls all MCP servers from the Official MCP Registry periodically and scores them automatically using criteria such as runtime guardrails and SAST scans. Built by a security professional whose team had to review 4-5 repositories daily, it provides an easy-to-read verdict for enterprise environments. Tech stack not specified. No traction signals mentioned.

Entities

Claude(model)MCP(concept)Official MCP Registry(tool)

Related

CommunitySun, Jul 12, 2026, 01:21 PM

Only 1 of 4,356 reachable MCP servers is ready for the 2026-07-28 spec

A scan of 4,356 reachable MCP servers found that only one is compliant with the upcoming 2026-07-28 specification. This highlights a severe lack of readiness across the MCP ecosystem just two weeks before the spec deadline.

14 engagement·1 source·hackernews
ProductSat, Jul 11, 2026, 06:44 AM

CertLocker: DevOps control plane for secrets and MCP agent access

CertLocker is a DevOps control plane that manages secrets, tokens, and MCP (Model Context Protocol) agent access. It replaces shared .env files with scoped tokens, enabling secure, role-based access for teams using LLM agents like Claude. The product solves the problem of managing credentials and access for distributed teams working on real client automation tasks.

1 engagement·1 source·reddit
ProductSun, Jul 12, 2026, 03:22 PM

CodeInspectus: open-source security scanner for AI-generated code

CodeInspectus is a fully open-source, local security scanner that checks AI-generated code for vulnerabilities. It covers 32 checks (13 AI-specific + 19 SAST) and 200+ secret/API-key patterns, catching issues like hardcoded secrets in client-side code, exposed API keys, and insecure RLS policies. It helps developers secure projects built with LLM-generated code.

1 engagement·1 source·reddit
ProductSun, Jul 12, 2026, 10:51 AM

MCP server for multi-agent interface contract negotiation

An MCP server that enables multiple AI agents working on the same codebase to share interface contracts and negotiate API changes in real time. It solves the problem of agents building against stale interfaces by alerting dependent agents when a contract changes, reducing merge conflicts.

1 engagement·1 source·reddit
ProductSat, Jul 11, 2026, 01:53 PM

CertLocker: DevOps control plane for secrets and MCP agent access

CertLocker is a DevOps control plane that manages secrets, tokens, and MCP (Model Context Protocol) agent access. It replaces .env files with a tokenized MCP approach, enabling secure, role-based access for LLM agents like Claude. The product targets agencies and teams using LLM agents for client work, solving the problem of managing credentials and access across distributed staff and contractors.

4 engagement·1 source·reddit