Scan MCP servers for runtime, static, config, dependency, and compliance risks.
Copy the install command and let the AI configure it · recommended for beginners
No copy-paste install info for "mcp-security-scanner" yet — see the docs or source repo.
Run a full security scan on this MCP server, including runtime inspection, AST-based static analysis, config audit, and dependency risk analysis. Summarize findings by severity with remediation advice.
A severity-ranked security report with issue details, affected locations, and remediation recommendations.
Evaluate whether this MCP server complies with the OWASP MCP Top 10. List each item as passed or failed with evidence, and provide a prioritized remediation checklist.
An itemized compliance assessment with supporting evidence and a prioritized remediation plan.
Analyze the dependency tree of this MCP server, identify packages with known vulnerabilities, deprecations, or permission risks, and explain upgrade paths plus compatibility considerations.
A dependency risk inventory with affected packages, risk explanations, upgrade suggestions, and compatibility notes.
Scan MCP servers for common security risks and assign A-F grades.
Scan configured MCP servers locally and generate inventory with risk scores.
Get CVE-based security review prompts to find risky code vulnerabilities faster.
Scan codebases for secrets, SAST issues, vulnerable dependencies, and IaC risks.
Audit MCP servers for spec compliance, security risks, and remediation guidance.
Scan remote MCP servers for protocol, security, and TLS issues.