Compuute MCP Security Scanner

Created By

Compuute11 days ago

Overview

Static security scanner for MCP servers. POST a public GitHub URL, get back severity counts, a 0-100 score, top findings with file and line, and the scanner version that produced them.

37 rules across TypeScript, JavaScript, Python, Go, Rust, C#, Java, and Kotlin — every language with an official MCP SDK. Detects argument injection for npx/uvx/pipx/pnpx runner binaries (CWE-88), known CVEs in 40+ top packages, and L0 discovery checks (transport, tool inventory, dependency pinning, license compliance).

The API shallow-clones the target repo to an ephemeral tempdir, runs the scanner in static-analysis mode (never executes target code), parses the JSON output, and wipes the tempdir.

This is a pattern detector, not an exploitability oracle. Around 90% raw false-positive rate on unfiltered output. Every response carries a disclaimer to that effect. Per-rule false-positive rates published in docs/FP-RATES.md.

POST /v1/scan is free with no API key. POST /v1/scan/pay charges $0.10 USDC per scan via x402 on Base L2. Manual L2-L4 audits at compuute.se/audit when you need dataflow review.

Wraps compuute-scan (MIT, zero dependencies). Methodology paper and threat model in the repo.

Try in Playground

Server Config

{
  "mcpServers": {
    "compuute-scan": {
      "type": "http",
      "url": "https://scan.compuute.se/mcp/"
    }
  }
}

Project Info

Created At

11 days ago

Updated At

11 days ago

Author Name

Compuute

Star

Language

License

Recommend Servers

View All

Tolstoy Studio

@GoTolstoy

Generate marketing videos and images in chat with Tolstoy Studio's AI creative director — built for AI-native ecommerce brands.

2 days ago

Amap Maps

@amap

高德地图官方 MCP Server

a year ago

Traveltype Mcp Server

27 minutes ago

Aws Kb Retrieval Server

@modelcontextprotocol

An MCP server implementation for retrieving information from the AWS Knowledge Base using the Bedrock Agent Runtime.

a year ago

Mailtrap Email Sending MCP

@Mailtrap

An MCP server that provides a tool for sending transactional emails via Mailtrap

a year ago

Slack

@modelcontextprotocol

Channel management and messaging capabilities

a year ago

Filesystem

@modelcontextprotocol

2 months ago

Filesystem

Secure file operations with configurable access controls

a year ago

MiniMax MCP

@MiniMax-AI

Official MiniMax Model Context Protocol (MCP) server that enables interaction with powerful Text to Speech, image generation and video generation APIs.

Python

a year ago

Serper MCP Server

@garymengcom

A Serper MCP Server

Python

a year ago

Payperbyte

@0rkz

Verified, provenance-first per-byte USDC data feeds for AI agents on Arbitrum. Discover first-party publishers, subscribe to live feeds or pay-per-call via x402, and verify-before-act (recompute keccak256 vs the publisher's on-chain EIP-712 attestation). 15 MCP tools; read-only needs no wallet. Testnet; no token.

30 minutes ago

Pet And Veterinary Products Recall

@agentprolabs

18 minutes ago

Fetch

@test

Web content fetching and conversion for efficient LLM usage

8 months ago

Firecrawl Mcp Server

@mendableai

Official Firecrawl MCP Server - Adds powerful web scraping to Cursor, Claude and any other LLM clients.

JavaScript

a year ago

Brave Search

@modelcontextprotocol

Web and local search using Brave's Search API

a year ago

Howtocook Mcp

@worryzyy

基于Anduin2017 / HowToCook （程序员在家做饭指南）的mcp server，帮你推荐菜谱、规划膳食，解决“今天吃什么“的世纪难题； Based on Anduin2017/HowToCook (Programmer's Guide to Cooking at Home), MCP Server helps you recommend recipes, plan meals, and solve the century old problem of "what to eat today"

a year ago

Sequential Thinking

@modelcontextprotocol

An MCP server implementation that provides a tool for dynamic and reflective problem-solving through a structured thinking process.

a year ago

Time

@modelcontextprotocol

A Model Context Protocol server that provides time and timezone conversion capabilities. This server enables LLMs to get current time information and perform timezone conversions using IANA timezone names, with automatic system timezone detection.

4 months ago

Airtreks Mcp

@SEKeener

18 hours ago

Conclave Ai Agent Arena

Competitive arena for AI agents via MCP. Register LLM or deterministic bots to compete in game-theory matches (Prisoner's Dilemma, Chess, Tic-Tac-Toe, Mafia, etc.) with ELO rankings, replays, and public leaderboards.

2 days ago

Instagram Mcp Server

@drashrafsaiyed-cyber

Control your Instagram from Claude — publish photos, reels, carousels, read insights, manage comments and DMs. 14 tools via Instagram Login API. One-click free Render deploy for Claude Web and mobile.

a day ago

Agentmagnet

@egri-creator

Universal product search across 40+ stores (Amazon 22 countries, eBay 22 countries, Awin 15k merchants, AliExpress, SaaS, B2B) — 52 languages, x402 micropayments.

a day ago

Openhelm

@Max Beech

Execute one-off or scheduled tasks within a virtual computer that can spin up a real browser, a full coding agent, an email inbox and more. OpenHelm unlocks the ability for your agent to carry out all sorts of tasks, such as: • Deep research on a topic • Emailing + handling responses • Coding work • Updating files What makes OpenHelm the best solution for this: • Underpinned by a powerful AI that monitors work and ensures goals are actually achieved • Browser is SUPER stealthy, meaning it can access more of the web than other bots • Work is managed by a powerful agentic system, facilitating multi-step flows For performing complex, one-off or recurring work, OpenHelm provides a secure, remote environment to make it all possible.

2 days ago

MCP Advisor

@istarwyh

MCP Advisor & Installation - Use the right MCP server for your needs

TypeScript

a year ago

GitLab

@modelcontextprotocol

GitLab API, enabling project management

a year ago

Zhipu Web Search

@BigModel

Zhipu Web Search MCP Server is a search engine specifically designed for large models. It integrates four search engines, allowing users to flexibly compare and switch between them. Building upon the web crawling and ranking capabilities of traditional search engines, it enhances intent recognition capabilities, returning results more suitable for large model processing (such as webpage titles, URLs, summaries, site names, site icons, etc.). This helps AI applications achieve "dynamic knowledge acquisition" and "precise scenario adaptation" capabilities.

a year ago

Ladu Adu Tools

@ladu-dev

LADU’s MCP server connects AI assistants directly to LA County ADU data. Ask about any address and get a plain-English buildability verdict, the parcel’s zoning and regulatory overlays (hillside, coastal, fire, flood, historic, fault zones), and the governing city’s ADU rules. Query permit statistics for any of 51 supported LA cities — totals, year-over-year trends, and valuation distributions from 19,000+ cleaned permit records going back to 2018. Compare two cities side by side, estimate project costs by type and finish level, or find permitted ADUs near an address.

10 hours ago

Runapi Mcp Server

@runapi-ai

MCP server for AI image generation, video generation, music creation, text-to-speech, and LLM chat. 130+ models from Flux, Kling, Seedance, Veo, Suno, ElevenLabs, Claude, GPT, Gemini, and more. Browse models, check pricing, create tasks, and poll results. Free model discovery without API key. Works with Claude Code, Cursor, Codex, Windsurf, and any MCP host.

18 hours ago

LADU Adu Tools

@sirbots

10 hours ago

Puppeteer

@modelcontextprotocol

Browser automation and web scraping

a year ago