MCPShield
Security scanner for MCP servers — detects tool poisoning, prompt injection, and 90+ vulnerability patterns
MCPShield CLI
Scan MCP servers and GitHub repositories for security vulnerabilities.
Powered by MCPShield — the MCP security scanner with 59+ detection rules covering the OWASP MCP Top 10.
Install
npm install -g mcpshield
Setup
Get a free API key at mcpshield.co/settings, then:
mcpshield auth mcp_sk_your_key_here
Usage
# Scan an HTTP MCP server
mcpshield scan --url https://mcp-server.example.com/mcp
# Scan a GitHub repository
mcpshield scan --github https://github.com/user/repo
# JSON output (for CI/CD)
mcpshield scan --url https://mcp-server.example.com/mcp --json
# Filter by severity
mcpshield scan --url https://mcp-server.example.com/mcp --severity high
Exit Codes
0— Scan completed, no critical findings1— Error (invalid key, rate limit, scan failure)2— Scan completed with critical findings
Environment Variables
MCPSHIELD_API_KEY— API key (alternative tomcpshield auth)MCPSHIELD_API_URL— Custom API endpoint (for self-hosted)
License
MIT
Servidores relacionados
Alpha Vantage MCP Server
patrocinadorAccess financial market data: realtime & historical stock, ETF, options, forex, crypto, commodities, fundamentals, technical indicators, & more
WebDev MCP
Provides a collection of useful web development tools.
Meta MCP Server
An MCP server for intelligent tool routing, using a Qdrant vector database and LM Studio for embeddings.
Mantis MCP Server
An MCP server for integrating with the Mantis Bug Tracker system.
Stability AI
Integrates with the Stability AI API for image generation, editing, and upscaling.
Cursor History MCP
Best MCP server for browsing, searching, backup, and exporting Cursor AI chat history.
Scorecard
Access Scorecard's AI model evaluation and testing tools via a Cloudflare Workers deployment.
MCP Devkit
A persistent development partner that prevents context drift and maintains project memory across all development sessions.
Zaim API
A server template for interacting with APIs that require an API key, using the Zaim API as an example.
Binlog MCP Server
A Model Context Protocol Server for analyzing MSBuild binlogs.
All-in-MCP
Provides utility functions for common tasks like text processing, encoding, decoding, hashing, and system information.