mcpindex.ai
← Index

io.github.CallMarcus/securityscorecard-mcp

io.github.CallMarcus/securityscorecard-mcp·v1.0.3·Security

Community-built, comprehensive MCP server for the SecurityScorecard API (unofficial).

Trust verdict · v1 advisory · method
NOT YET SCREENEDno verdict on file

Verdict not yet evaluated for this tool. The semantic screen takes adversarial cases first; coverage rolls out as the corpus expands (15/150 labels to graduation). The deterministic conformance probe is built but has not yet run on the public corpus, so a recorded verdict here is REVIEW or UNVERIFIED, never a clearing ALLOW. Until a verdict is recorded, an agent should treat this tool as not-yet-cleared and fall back to its own checks. Method: the eval, four-state verdict, honest limits.

Own this server? Screen its description →

Environment variables
SECURITY_SCORECARD_API_TOKEN
requiredsecret

SecurityScorecard API token (get one from your SecurityScorecard dashboard).

COMPANY_DOMAIN

Optional default company domain for queries (e.g. example.com).

MCP quality score · maturity, not trust · methodology
freshness
25
completeness
10
installability
25
documentation
15
stability
10
Alternatives in Security
ai.dynamicfeed/dynamic-feed
ai.dynamicfeed/dynamic-feed

Fresh data AI models lack: live prices, software versions, CVEs, service status & more.

Helixar Security
ai.helixar/mcp

Security tools for AI agents: scan MCP servers, validate HDP delegation chains, audit releases.

ai.smithery/Nekzus-npm-sentinel-mcp
ai.smithery/Nekzus-npm-sentinel-mcp

Provide AI-powered real-time analysis and intelligence on NPM packages, including security, depend…