How to Use
Search
MCP Servers
Review
MCP Server Scan Results
Leverage Findings and Tool Inventory
What You Get in Every MCP Trust Scan Result
Risk rating: Low, Medium, High, or Critical with severity rationale.
Deep findings: Impacted rules and vulnerability explanations.
Tool inventory: Every tool exposed by the server, including destructive operations.
Rescan on release changes, full trend view.
Developer + admin steps.
Why the MCP Trust Registry Exists
MCP servers are rapidly becoming the default way to connect AI agents to tools, files, and SaaS systems. But the ecosystem is exploding with unofficial, third‑party servers — many with hidden security risks. Teams lack a standardized, trusted way to evaluate whether an MCP server is safe to run in sensitive environments.
The MCP Registry provides code-level evaluations mapped to OWASP, MCP best practices, and Maestro so security teams can quickly assess, harden, or block risky connectors.
The MCP Trust Registry scanned 7,500+ MCP servers.
Here's what we found:
of MCP servers have critical vulnerabilities
Nearly 1 in 10 servers your agents touch are compromised.
of MCP servers have command injection flaws
Happens below the gateway layer.
MCP servers are vulnerable to SSRF
One request to reach your internal network.