Automated MCP server security scoring index
A trust index that automatically scores MCP servers from the official registry based on security criteria like runtime guardrails and SAST scans. It helps security professionals quickly assess whether an MCP server is safe for enterprise use, reducing manual review bottlenecks.
Visit project ↗Entities
Related
Only 1 of 4,356 reachable MCP servers is ready for the 2026-07-28 spec
A scan of 4,356 reachable MCP servers found that only one is compliant with the upcoming 2026-07-28 specification. This highlights a severe lack of readiness across the MCP ecosystem just two weeks before the spec deadline.
CertLocker: DevOps control plane for secrets and MCP agent access
CertLocker is a DevOps control plane that manages secrets, tokens, and MCP (Model Context Protocol) agent access. It replaces shared .env files with scoped tokens, enabling secure, role-based access for teams using LLM agents like Claude. The product solves the problem of managing credentials and access for distributed teams working on real client automation tasks.
CodeInspectus: open-source security scanner for AI-generated code
CodeInspectus is a fully open-source, local security scanner that checks AI-generated code for vulnerabilities. It covers 32 checks (13 AI-specific + 19 SAST) and 200+ secret/API-key patterns, catching issues like hardcoded secrets in client-side code, exposed API keys, and insecure RLS policies. It helps developers secure projects built with LLM-generated code.
MCP server for multi-agent interface contract negotiation
An MCP server that enables multiple AI agents working on the same codebase to share interface contracts and negotiate API changes in real time. It solves the problem of agents building against stale interfaces by alerting dependent agents when a contract changes, reducing merge conflicts.
CertLocker: DevOps control plane for secrets and MCP agent access
CertLocker is a DevOps control plane that manages secrets, tokens, and MCP (Model Context Protocol) agent access. It replaces .env files with a tokenized MCP approach, enabling secure, role-based access for LLM agents like Claude. The product targets agencies and teams using LLM agents for client work, solving the problem of managing credentials and access across distributed staff and contractors.


