MCP Observatory
security

Security

Every MCP risk signal in one place — CVEs, tool safety, drift, naming, licenses. Heuristic: review signals, not verdicts.

Capability drift: a tracked server gaining a permission, adding/removing a tool, rewriting a description, or losing verified status between captures — a review signal, not a verdict.

  1. HIGH parcadei/Continuous-Claude-v3code analysis flagged dynamic code execution ×6 in parcadei/Continuous-Claude-v3
  2. HIGH joeseesun/qiaomu-anything-to-notebooklmcode analysis flagged dynamic code execution in joeseesun/qiaomu-anything-to-notebooklm
  3. HIGH 53AI/53AIHubcode analysis flagged committed secret ×4, dynamic code execution ×17 in 53AI/53AIHub
  4. HIGH cporter202/API-mega-listcode analysis flagged hidden prompt content ×3 in cporter202/API-mega-list
  5. HIGH sultannaufal/puppeteer-mcp-servercode analysis flagged dynamic code execution in sultannaufal/puppeteer-mcp-server
  6. HIGH shaharia-lab/mcp-frontendcode analysis flagged committed secret in shaharia-lab/mcp-frontend
  7. HIGH Galbaz1/video-research-mcpcode analysis flagged hidden prompt content ×2 in Galbaz1/video-research-mcp
  8. HIGH capiscio/a2a-demoscode analysis flagged dynamic code execution in capiscio/a2a-demos
  9. HIGH Brainrot-Creations/claude-pluginscode analysis flagged dynamic code execution ×5 in Brainrot-Creations/claude-plugins
  10. HIGH manthanghasadiya/mcpseccode analysis flagged dynamic code execution ×6 in manthanghasadiya/mcpsec
  11. HIGH sahiloj/MCPScancode analysis flagged dynamic code execution ×2 in sahiloj/MCPScan
  12. HIGH jenkinsm13/metashape-mcpcode analysis flagged dynamic code execution ×2 in jenkinsm13/metashape-mcp
  13. HIGH purupurupu/css-noop-checkercode analysis flagged dynamic code execution in purupurupu/css-noop-checker
  14. HIGH vje013/darwin-agentic-cloudcode analysis flagged dynamic code execution ×3 in vje013/darwin-agentic-cloud
  15. HIGH dminkovski/azure-diagram-mcpcode analysis flagged dynamic code execution in dminkovski/azure-diagram-mcp
  16. HIGH EchoingVesper/mcp-task-orchestratorcode analysis flagged dynamic code execution ×6 in EchoingVesper/mcp-task-orchestrator
  17. HIGH holstein13/mcp-config-managercode analysis flagged dynamic code execution in holstein13/mcp-config-manager
  18. HIGH 199-mcp/mcp-klingcode analysis flagged committed secret in 199-mcp/mcp-kling
  19. HIGH Jordan-Jarvis/jenkins-mcp-enterprisecode analysis flagged dynamic code execution in Jordan-Jarvis/jenkins-mcp-enterprise
  20. HIGH ekingunoncu/izan.iocode analysis flagged dynamic code execution ×2 in ekingunoncu/izan.io
  21. HIGH lourencomaciel/sift-gatewaycode analysis flagged dynamic code execution ×2 in lourencomaciel/sift-gateway
  22. HIGH rustic-ai/codeprismcode analysis flagged dynamic code execution in rustic-ai/codeprism
  23. HIGH yranjan06/WEBGhosting-MCPcode analysis flagged dynamic code execution in yranjan06/WEBGhosting-MCP
  24. HIGH PatrykIti/blender-ai-mcpcode analysis flagged dynamic code execution in PatrykIti/blender-ai-mcp
  25. HIGH kimtth/mcp-aoai-web-browsingcode analysis flagged dynamic code execution in kimtth/mcp-aoai-web-browsing