Security scanner for MCP servers. SSRF, path traversal, injection, auth, secrets. Grade A-F.
Open-source security scanner for MCP servers. 20 rules across 6 categories. Scan any server in seconds. Get a grade from A to F. 36.7% of MCP servers are SSRF-vulnerable (BlueRock, 2026). 82% have path traversal flaws. Only 17% are production-ready. MCP Shield finds the vulnerabilities before attackers do. Rule | Severity | What It Detects | ------|----------|----------------| SSRF-01 | Critical…
Verification confirms publisher identity (repo ownership), not code safety. The security scan covers known CVEs and suspicious install scripts — it cannot prove the absence of malicious code.
Open-source security scanner for MCP servers. 20 rules across 6 categories. Scan any server in seconds. Get a grade from A to F. 36.7% of MCP servers are SSRF-vulnerable (BlueRock, 2026). 82% have path traversal flaws. Only 17% are production-ready. MCP Shield finds the vulnerabilities before attackers do. Rule | Severity | What It Detects | ------|----------|----------------| SSRF-01 | Critical | User input in HTTP request URLs | SSRF-02 | Medium | Dynamic URLs without validation | SSRF-03 |…