rodolfboctor/mcp-scan

Security scanner for MCP server configurations. Detects secrets, CVEs, permission issues, and exfiltration vectors across 10 AI tool clients.

45
/ 100
Emerging

Performs data flow analysis to trace where processed data goes and monitors network egress to every contacted endpoint, plus supports custom security policies and compliance mapping (SOC 2, GDPR, HIPAA, PCI-DSS, NIST 800-53). Runs entirely offline with zero network requests, analyzing configurations across 16+ AI clients (Claude Desktop, VS Code, Cursor, Zed, etc.) and outputting SARIF for GitHub Actions integration.

Available on npm.

Maintenance 13 / 25
Adoption 6 / 25
Maturity 18 / 25
Community 8 / 25

How are scores calculated?

Stars

21

Forks

2

Language

TypeScript

License

MIT

Category

security-testing-mcp

Last pushed

Mar 28, 2026

Commits (30d)

0

Dependencies

12

GitHub npm
Security Testing MCP · 268 servers

Get this data via API

curl "https://pt-edge.onrender.com/api/v1/quality/mcp/rodolfboctor/mcp-scan"

Open to everyone — 100 requests/day, no key needed. Get a free key for 1,000/day.

Higher-rated alternatives

panther-labs/mcp-panther

Write detections, investigate alerts, and query logs from your favorite AI agents

67

Wh0am123/MCP-Kali-Server

MCP configuration to connect AI agent to a Linux machine.

66

0x4m4/hexstrike-ai

HexStrike AI MCP Agents is an advanced MCP server that lets AI agents (Claude, GPT, Copilot,...

66

duriantaco/skylos

High-precision Python SAST & Dead Code Remover. Finds unused functions, secrets, and security...

66

DMontgomery40/pentest-mcp

NOT for educational purposes: An MCP server for professional penetration testers including...

65

Explore MCP Servers

All categories Trending MCP Server directory Insights