Scan MCP servers for common security risks and assign A-F grades.
Copy the install command and let the AI configure it · recommended for beginners
Please install the "MCP Shield" MCP server from askskill: Run: claude mcp add 'io-github-sophiacave-mcp-shield' -- npx -y @sophiacave/mcp-shield
Scan this MCP server for security risks, focusing on SSRF, path traversal, command or prompt injection, auth flaws, and secret leakage. Return an A-F grade with remediation advice.
A categorized scan report with findings, severity levels, an overall grade, and remediation recommendations.
Audit this MCP server’s authentication and secret handling. Check for unauthorized access, token exposure, insecure defaults, and environment variable leaks, then summarize the risk level.
A focused audit summary on auth and secrets, listing issues, impact scope, and remediation directions.
Based on the scan results for this MCP server, prepare a team-facing security assessment summary covering major vulnerability types, highest-risk findings, grading rationale, and remediation priorities.
A team-friendly security summary that clarifies current security posture and remediation priorities.
Scan MCP servers for runtime, static, config, dependency, and compliance risks.
Scan configured MCP servers locally and generate inventory with risk scores.
Get CVE-based security review prompts to find risky code vulnerabilities faster.
Scan MCP servers and AI tools for risks with scoring and auto-protection.
Scan remote MCP servers for protocol, security, and TLS issues.
Scan codebases for secrets, SAST issues, vulnerable dependencies, and IaC risks.