mcp-security-standard/mcp-server-security-standard

MCP Server Security Standard (MSSS): an open, testable security control standard for certifying MCP servers, with levels, evidence requirements, and reporting schemas.

47
/ 100
Emerging

Defines 24 controls across 8 domains (filesystem, execution, network, authorization, input validation, logging, secrets, supply chain) mapped to risk-based compliance levels L1-L4, with deployment profiles for specific MCP scenarios and machine-readable JSON schemas for assessment reporting. The standard synthesizes NIST CSF, OWASP ASVS, and CIS Controls principles to address MCP-specific threats like command injection and supply chain compromise. Community-driven with i18n support, it targets the MCP ecosystem and integrates with platforms like MCP-Hub for standardized server certification.

No Package No Dependents
Maintenance 10 / 25
Adoption 8 / 25
Maturity 11 / 25
Community 18 / 25

How are scores calculated?

Stars

67

Forks

13

Language

License

CC-BY-SA-4.0

Category

security-testing-mcp

Last pushed

Jan 29, 2026

Commits (30d)

0

GitHub
Security Testing MCP · 268 servers

Get this data via API

curl "https://pt-edge.onrender.com/api/v1/quality/mcp/mcp-security-standard/mcp-server-security-standard"

Open to everyone — 100 requests/day, no key needed. Get a free key for 1,000/day.

Higher-rated alternatives

panther-labs/mcp-panther

Write detections, investigate alerts, and query logs from your favorite AI agents

67

duriantaco/skylos

High-precision Python SAST & Dead Code Remover. Finds unused functions, secrets, and security...

66

Wh0am123/MCP-Kali-Server

MCP configuration to connect AI agent to a Linux machine.

66

0x4m4/hexstrike-ai

HexStrike AI MCP Agents is an advanced MCP server that lets AI agents (Claude, GPT, Copilot,...

66

DMontgomery40/pentest-mcp

NOT for educational purposes: An MCP server for professional penetration testers including...

65

Explore MCP Servers

All categories Trending MCP Server directory Insights