mcp-auth

MCPcommunity
v0.2.0Silverhand Inc.MITUpdated 5mo agonpmGitHub

Plug and play auth for Model Context Protocol (MCP) servers

The MCP specification requires OAuth 2.1 and other RFCs for authorization. Instead of implementing all the OAuth 2.1 and OpenID Connect standards yourself, a production-ready provider and a set of libraries and tutorials can save you a lot of time and effort. That's where MCP Auth comes in. It includes: 1. An updated OAuth 2.1 and OpenID Connect provider list that meets the MCP requirements. 2. A…

Automatically indexed from public sources. Not yet verified by the developer on Forge.Claim this listing →
5mo agoLast update
Package
AuthorSilverhand Inc.
LicenseMIT
Version0.2.0
Sourcenpm
Trust Status
B
60/100Good
Listed in Forge index+10/10
Publisher identity verified+0/25
Publisher: run `forge publish` from the package repo to claim ownership
Ed25519 publish signature+0/10
Included automatically when the publisher runs `forge publish`
Domain verification+0/5
Publisher: host /.well-known/forge.json on the package homepage with { "publisher": "<github-login>" }
CVE scan · clean+30/30
Static analysis · clean+20/20
npm provenance (Sigstore)+0/5
Publish from GitHub Actions with the --provenance flag
Paste into Claude Code, Cursor, or any AI assistant to fix all gaps
StatusCommunity-indexed
PublisherUnverified
SignatureUnsigned
Domain
Provenance
DependenciesNot audited
Tool surface
Security scan✓ Cleanv0.2.0 · 1mo ago
EvalsNone
IndexedMay 24, 2026

Verification confirms publisher identity (repo ownership), not code safety. The security scan covers known CVEs and suspicious install scripts — it cannot prove the absence of malicious code.

About

The MCP specification requires OAuth 2.1 and other RFCs for authorization. Instead of implementing all the OAuth 2.1 and OpenID Connect standards yourself, a production-ready provider and a set of libraries and tutorials can save you a lot of time and effort. That's where MCP Auth comes in. It includes: 1. An updated OAuth 2.1 and OpenID Connect provider list that meets the MCP requirements. 2. A set of provider-agnostic libraries and tools to help you integrate your MCP server with any compli

Keywords
modelcontextprotocolmcpoauthopenidconnectoidc