MCPShield

Security scanner for MCP servers — detects tool poisoning, prompt injection, and 90+ vulnerability patterns

MCPShield CLI

Scan MCP servers and GitHub repositories for security vulnerabilities.

Powered by MCPShield — the MCP security scanner with 59+ detection rules covering the OWASP MCP Top 10.

Install

npm install -g mcpshield

Setup

Get a free API key at mcpshield.co/settings, then:

mcpshield auth mcp_sk_your_key_here

Usage

# Scan an HTTP MCP server
mcpshield scan --url https://mcp-server.example.com/mcp

# Scan a GitHub repository
mcpshield scan --github https://github.com/user/repo

# JSON output (for CI/CD)
mcpshield scan --url https://mcp-server.example.com/mcp --json

# Filter by severity
mcpshield scan --url https://mcp-server.example.com/mcp --severity high

Exit Codes

0 — Scan completed, no critical findings
1 — Error (invalid key, rate limit, scan failure)
2 — Scan completed with critical findings

Environment Variables

MCPSHIELD_API_KEY — API key (alternative to mcpshield auth)
MCPSHIELD_API_URL — Custom API endpoint (for self-hosted)

License

MIT

Máy chủ liên quan

Alpha Vantage MCP Server

nhà tài trợ

Access financial market data: realtime & historical stock, ETF, options, forex, crypto, commodities, fundamentals, technical indicators, & more

YAPI MCP Server

An MCP server for accessing YAPI interface details, configured via environment variables.

MCPBundles

One remote MCP server for 500+ production APIs — Stripe, HubSpot, Postgres, Gmail, and more. OAuth and API key auth, credential management, and a CLI.

Remote MCP Server (Authless)

A simple, auth-less MCP server on Cloudflare Workers that provides the current time in the US Eastern timezone.

MCPR

Expose R functions through the Model Context Protocol (MCP) for seamless integration with AI assistants.

Terry-Form MCP

Execute Terraform commands locally in a secure, containerized environment. Features LSP integration for intelligent Terraform development.

Substrate MCP Server

A Model Context Protocol (MCP) server for Substrate blockchains, written in Rust.

MCP Remote Machine Control

Provides remote machine control capabilities, eliminating SSH overhead for token-efficient system operations.

EVM MCP Server

Provides blockchain services for over 30 EVM-compatible networks through a unified interface.

Web3 MCP

Interact with multiple blockchains including Solana, Ethereum, THORChain, XRP Ledger, TON, Cardano, and UTXO chains.

ASKME-CLI

A command-line interface to prompt users for their next plan or confirmation.

NotebookLM Web Importer

Nhập trang web và video YouTube vào NotebookLM chỉ với một cú nhấp. Được tin dùng bởi hơn 200.000 người dùng.

Cài đặt tiện ích Chrome