Mcpscan
sahiloj/MCPScanMIT⭐ 16🔧 0 tools
F2.0SpiderScore (registry)
⚠ Hard constraint applied: critical vulnerability
Decision
Not Recommended
Confidence
90%
Mcpscan is not recommended — low score (2.0/10) with 2 critical issues.
Recommended Actions
- highRun In Container2 critical vulnerabilities require isolation
- highLimit PermissionsRestrict tool access to minimum required scope
Do Not
- ✗running in production without container isolation
- ✗using for security-sensitive tasks
Risk Flags (1)
- criticalchild_process_injection×2Command injection — execSync() with template literal interpolation
How This Was Decided
- negativew=0.5Overall quality score = 2.0/10 (grade F)
- negativew=0.82 critical security issue(s) detected
- positivew=0.3Tool description clarity score = 5.0/10
Source: SpiderRating automated security scanUpdated: 2026-03-22Protocol: v1.1
Description Quality
Composite: 5.0 / 10
3-Layer Breakdown
Description (38%)
5.0
Security (34%)
7.5
Metadata (28%)
6.1
Description Dimensions
Intent Clarity
5.0
Permission Scope
5.0
Side Effects
5.0
Capability Disclosure
5.0
Operational Boundaries
5.0
Security Analysis
7.5
Score
2
Critical
0
High
0
Medium
0
Low
Findings Redacted
Detailed security findings are hidden during the 90-day responsible disclosure window. Maintainers have been notified.
2 CRITICAL
Metadata Health
Provenance (40%)
7.0
Maintenance (35%)
7.0
Popularity (25%)
3.5
Badge
Add this badge to your README:
[](https://spiderrating.com/servers/sahiloj/MCPScan)🛡️
Protect Your Agents
Get a free API key. Every MCP tool call checked against 15,923 rated servers in real-time.
Get Free API Key →📊
Monitor All Your Servers
Dashboard for your entire MCP portfolio. Score tracking, alerts, and compliance reports.
Start Free Trial →⭐
Scan Locally (Open Source)
Run SpiderShield on your own machine. 46+ security rules, zero data leaves your system.
Star on GitHub →