Mcp Audit
apisec-inc/mcp-auditMIT⭐ 144🔧 3 tools
F1.8SpiderScore (registry)
Decision
Not Recommended
Confidence
90%
Mcp Audit is not recommended — low score (1.75/10) with 0 critical issues.
Recommended Actions
- mediumLimit Permissions13 high-severity issues warrant caution
Do Not
- ✗using for security-sensitive tasks
Risk Flags (3)
- highhardcoded_credential×2Hardcoded credential -- secret value embedded in source code
- hightoken_leakage×11Secret or token may be leaked through error messages, logs, or return values
- mediumssrfPotential SSRF -- unrestricted network requests with user-controlled URLs
How This Was Decided
- negativew=0.5Overall quality score = 1.75/10 (grade F)
- negativew=0.513 high-severity issue(s) detected
- negativew=0.3Tool description clarity score = 1.4/10
Source: SpiderRating automated security scanUpdated: 2026-03-22Protocol: v1.1
Description Quality
Composite: 1.4 / 10
3-Layer Breakdown
Description (38%)
1.4
Security (34%)
6.1
Metadata (28%)
7.9
Description Dimensions
Intent Clarity
0.0
Permission Scope
0.0
Side Effects
2.0
Capability Disclosure
4.0
Operational Boundaries
1.6
Security Analysis
6.1
Score
0
Critical
13
High
1
Medium
0
Low
Findings Redacted
Detailed security findings are hidden during the 90-day responsible disclosure window. Maintainers have been notified.
13 HIGH1 MEDIUM
Metadata Health
Provenance (40%)
9.0
Maintenance (35%)
7.0
Popularity (25%)
7.4
Badge
Add this badge to your README:
[](https://spiderrating.com/servers/apisec-inc/mcp-audit)🛡️
Protect Your Agents
Get a free API key. Every MCP tool call checked against 15,923 rated servers in real-time.
Get Free API Key →📊
Monitor All Your Servers
Dashboard for your entire MCP portfolio. Score tracking, alerts, and compliance reports.
Start Free Trial →⭐
Scan Locally (Open Source)
Run SpiderShield on your own machine. 46+ security rules, zero data leaves your system.
Star on GitHub →