MCP Audit

Name: MCP Audit
Availability: InStock
Author: AnayGarodia

by AnayGarodia

Static analysis tool to identify security vulnerabilities like shell and SQL injection in MCP server source code.

0 stars

4 views

Works in:claude

Exposes:Tools

View on GitHub Docs

What it does

Provides security scanning for Python-based MCP servers. It parses source code to trace data flow from MCP tool parameters to dangerous sinks, identifying vulnerabilities before they reach production.

Tools

mcp-vulnscan: Scans a directory for common security flaws (CWEs) specifically tailored for MCP server architectures.

Installation

{
  "mcpServers": {
    "mcpaudit": {
      "command": "mcp-vulnscan",
      "args": ["./path/to/your/server"]
    }
  }
}

Supported hosts

Claude Desktop

Quick install

pip install mcp-vulnscan

Information

Pricing: free
Published: 5/31/2026
stars