Mcpsec

manthanghasadiya/mcpsecMIT8🔧 0 tools

F2.0SpiderScore (registry)
Use cases:pentestvuln-scanning
⚠ Hard constraint applied: critical vulnerability
Decision
Not Recommended
Confidence
90%

Mcpsec is not recommended — low score (2.0/10) with 3 critical issues.

Recommended Actions

  • high
    Run In Container
    3 critical vulnerabilities require isolation
  • high
    Limit Permissions
    Restrict tool access to minimum required scope

Do Not

  • running in production without container isolation
  • exposing this tool to untrusted input
  • using for security-sensitive tasks
Risk Flags (5)
  • critical
    unsafe_deserialization×3
    Unsafe deserialization -- untrusted data may execute arbitrary code
  • high
    unsafe_path_resolution
    File operation on user-controlled path without validation or sandboxing
  • high
    token_leakage×2
    Secret or token may be leaked through error messages, logs, or return values
  • high
    hardcoded_credential×2
    Hardcoded credential -- secret value embedded in source code
  • medium
    ssrf
    Potential SSRF -- unrestricted network requests with user-controlled URLs
How This Was Decided
  • negativew=0.5Overall quality score = 2.0/10 (grade F)
  • negativew=0.83 critical security issue(s) detected
  • negativew=0.58 high-severity issue(s) detected
  • positivew=0.3Tool description clarity score = 5.0/10
Source: SpiderRating automated security scanUpdated: 2026-03-22Protocol: v1.1

Description Quality

Composite: 5.0 / 10

3-Layer Breakdown

Description (38%)
5.0
Security (34%)
5.2
Metadata (28%)
5.8

Description Dimensions

Intent Clarity
5.0
Permission Scope
5.0
Side Effects
5.0
Capability Disclosure
5.0
Operational Boundaries
5.0

Security Analysis

5.2
Score
3
Critical
8
High
1
Medium
0
Low

Findings Redacted

Detailed security findings are hidden during the 90-day responsible disclosure window. Maintainers have been notified.

5 HIGH3 CRITICAL1 MEDIUM

Metadata Health

Provenance (40%)
7.0
Maintenance (35%)
7.0
Popularity (25%)
2.4

Badge

Add this badge to your README:

[![SpiderRating](https://spiderrating.com/badge/manthanghasadiya__mcpsec.svg)](https://spiderrating.com/servers/manthanghasadiya/mcpsec)
🛡️

Protect Your Agents

Get a free API key. Every MCP tool call checked against 15,923 rated servers in real-time.

Get Free API Key →
📊

Monitor All Your Servers

Dashboard for your entire MCP portfolio. Score tracking, alerts, and compliance reports.

Start Free Trial →

Scan Locally (Open Source)

Run SpiderShield on your own machine. 46+ security rules, zero data leaves your system.

Star on GitHub →

Similar Servers

Rampartshighflame-ai/ramparts
3.9D
Kryptonclawarmyknife-social/kryptonclaw
3.9D
Wass Mcptb0hdan/wass-mcp
3.7D
Mcp Checkpointaira-security/mcp-checkpoint
3.5D
Flipper Mcproostercoopllc/flipper-mcp
3.3D