MCPShield
Security scanner for MCP servers — detects tool poisoning, prompt injection, and 90+ vulnerability patterns
MCPShield CLI
Scan MCP servers and GitHub repositories for security vulnerabilities.
Powered by MCPShield — the MCP security scanner with 59+ detection rules covering the OWASP MCP Top 10.
Install
npm install -g mcpshield
Setup
Get a free API key at mcpshield.co/settings, then:
mcpshield auth mcp_sk_your_key_here
Usage
# Scan an HTTP MCP server
mcpshield scan --url https://mcp-server.example.com/mcp
# Scan a GitHub repository
mcpshield scan --github https://github.com/user/repo
# JSON output (for CI/CD)
mcpshield scan --url https://mcp-server.example.com/mcp --json
# Filter by severity
mcpshield scan --url https://mcp-server.example.com/mcp --severity high
Exit Codes
0— Scan completed, no critical findings1— Error (invalid key, rate limit, scan failure)2— Scan completed with critical findings
Environment Variables
MCPSHIELD_API_KEY— API key (alternative tomcpshield auth)MCPSHIELD_API_URL— Custom API endpoint (for self-hosted)
License
MIT
Server Terkait
Alpha Vantage MCP Server
sponsorAccess financial market data: realtime & historical stock, ETF, options, forex, crypto, commodities, fundamentals, technical indicators, & more
Rails Active MCP
A Ruby gem providing secure Rails console access through MCP for AI agents and development tools.
mcp-hosts-installer
MCP server that installs and registers other MCP servers in Cursor, VS Code, or Claude Desktop from npm, PyPI, or a local folder (via npx).
vnsh
Ephemeral encrypted file sharing for AI. Client-side AES-256 encryption, 24h auto-vaporization.
NovaCV
An MCP server for accessing the NovaCV resume service API.
MCPfinder
A Node.js server for AI agents to discover, install, and manage new capabilities on demand via the MCP protocol.
secretctl
AI-safe secrets manager - inject credentials as env vars, AI never sees plaintext
Zeropath
Interact with the Zeropath vulnerability management API.
Sonic Pi MCP
Interact with Sonic Pi, the live coding music synth, using OSC messages.
SeaLights
An MCP server for interacting with the SeaLights platform for quality intelligence.
My First MCP
A Model Context Protocol server implemented in Node.js with Docker support.