Test MCP servers for spec compliance and quickly identify protocol issues.
The materials describe a CLI/MCP tool for testing MCP servers for spec compliance, with no required secrets and no declared remote endpoints. The main concerns are local execution capability and lack of auditable source, but its official registry origin and recent maintenance support an overall caution rather than high-risk rating.
The materials explicitly state that no keys or environment variables are required, and there is no indication that users must provide API tokens, account passwords, or other sensitive credentials, so credential exposure appears low.
No remote endpoints are declared, and the materials do not state that user data is sent to external services; based on the available information, there is no explicit outbound data path.
The system checks explicitly mark executes-code, and as a CLI/MCP server, the tool will run locally and execute its testing logic. This is a normal capability for this class of tools, but it should be run in a controlled environment.
As a local CLI/MCP tool, it will typically interact with user-specified MCP server configurations, test inputs, or local runtime information; the materials do not define precise read/write boundaries, so it should be used with least privilege, but there is no clear red flag of excessive access beyond its stated purpose.
Positive factors include distribution through the official registry and updates within the past year; however, there is no open-source repository, no declared license, and very low community adoption (0 stars), making independent review of source and dependencies difficult. Overall this is a supply-chain caution, not high risk based on closed source alone.
Copy the install command and let the AI configure it · recommended for beginners
Please install the "io.github.YawLabs/mcp-compliance" MCP server from askskill: Run: claude mcp add 'io-github-yawlabs-mcp-compliance' -- npx -y @yawlabs/mcp-compliance
No documentation provided
Check the source repo for usage and examples.
Install and manage MCP servers centrally with a single setup.
Audit any MCP server.json for official MCP spec compliance.
Scan remote MCP servers for protocol, security, and TLS issues.
Manage and configure Caddy web servers through the Caddy admin API.
Inspect npm packages, run security audits, and analyze dependencies and risks.
Search team knowledge bases, answer questions with citations, and open related pages.