MCP Observatory
security

Security

Every MCP risk signal in one place — CVEs, tool safety, drift, naming, licenses. Heuristic: review signals, not verdicts.

Risk: servers ranked by their composite exposure score — synthesised from CVEs, inferred permissions, drift, supply-chain and abandonment signals. Heuristic and banded; a high grade is a 'review this' signal, never a verdict.

patchable now2 servers · fix published, not adopted

A fix already ships upstream but the server still runs an older, vulnerable version — remediation lag, actionable today.

  1. @frontmcp/adapters HIGH CVE-2026-39885 1.4.1 → 2.3.0
  2. @frontmcp/sdk HIGH CVE-2026-39885 1.4.1 → 2.3.0
grade all A B C D E
  1. 1 C @vpxa/aikit 59
    • exposure 35
    • inherited 15
    • safety 12
  2. 2 C Arrayo/smart-context-mcp 59
    • exposure 35
    • drift 20
    • safety 12
  3. 3 C Azure/containerization-assist 59
    • exposure 35
    • drift 20
    • safety 12
  4. 4 C Boosted-Chat/BoostedTravel 59
    • exposure 35
    • drift 20
    • safety 12
  5. 5 C Chen-zexi/open-ptc-agent 59
    • exposure 35
    • drift 12
    • safety 12
  6. 6 C Chibey-max/Ethereum-Agentic 59
    • exposure 35
    • drift 12
    • safety 12
  7. 7 C Coff0xc/AutoRedTeam-Orchestrator 59
    • exposure 35
    • drift 12
    • safety 12
  8. 8 C Context7 59
    • exposure 22
    • drift 20
    • safety 25
  9. 9 C Decade-qiu/CookHero 59
    • exposure 35
    • drift 12
    • safety 12
  10. 10 C EchoingVesper/mcp-task-orchestrator 59
    • exposure 35
    • drift 12
    • safety 12
  11. 11 C Frihet-io/frihet-mcp 59
    • exposure 35
    • drift 20
    • safety 12
  12. 12 C GDM-Pixel/stellaris-code-search 59
    • exposure 35
    • safety 24
  13. 13 C LeonMare/vozclara 59
    • exposure 22
    • drift 12
    • safety 25
  14. 14 C LuuOW/meridian-mcp 59
    • exposure 35
    • drift 20
    • safety 12
  15. 15 C OleksandrKucherenko/mcp-obsidian-via-rest 59
    • exposure 35
    • drift 20
    • safety 12