#audit
全部
Security Audit Tool
qianniuspace
A powerful MCP (Model Context Protocol) Server that audits npm package dependencies for security vulnerabilities. Built with remote npm registry integration for real-time security checks.
Mcp Spine
Donnyb369
Context Minifier & State Guard — Local-first MCP middleware proxy
Agentvalet
AgentValet
IGA for AI agents. IETF AIMS-compliant identity, credential governance & MCP proxy. SPIFFE · RFC 7591 · AuthZEN · CIBA. npx @agentvalet/register
Catalyst Governance
Stratogenic-AI
Governance middleware for AI agents — permission gates, human-in-the-loop approvals, compliance scanning across 8 frameworks, and hash-linked audit ledger. Hosted SSE endpoint, no self-hosting required.
MASSAT - Security Audit for AI Agent Systems
craigmbrown
Open-source security audit framework covering all 10 OWASP Agentic AI threat categories (ASI01-ASI10). Scan multi-agent systems for prompt injection, data exfiltration, broken access control, and 7 more categories. Returns risk scores (0-100) with remediation priorities. Free tie
Mcp Scan
Chris79OG
MCP server security scanner that detects vulnerability patterns in MCP server configurations and outputs SARIF reports. Scans for prompt injection risks, tool poisoning, excessive permissions, and other security issues in Model Context Protocol servers.
HORIZON SHIELD
ogasurfproject-jpg
Checks if a Japanese construction or renovation estimate is fair and flags overcharge risk. Attach your estimate and get a red-flag audit.
SEO Audit MCP Server
glivera
Professional SEO auditing MCP server with 14 tools and 9 specialist agents. Quick audits, deep multi-agent analysis, Core Web Vitals, E-E-A-T scoring, schema validation, local SEO, GEO/AI readiness, and site crawling. Free tier available.
SEO Quick Audit - Audit any URL in seconds
zerhal
Free SEO audit MCP server. Analyze meta tags, headings, broken links, robots.txt, and competitor pages directly from Claude, Cursor, or Windsurf. No API key needed.
Webbersites X402 Mcp
webberdesign
Site Audit MCP
lamcearber-spec
PageSpeed, WHOIS, DNS, SSL checks, and site health analysis for AI agents. 6 tools, free, no API key.
Fleets
runFleets
Multi-site analytics for AI agents. Read-only GA4, Search Console, Cloudflare edge, and PageSpeed data across every site you run, plus audits that return paste-ready fixes. Local stdio server via npx -y fleets-mcp; pairs with the fleets CLI (npm: fleets).
Trustloop
SMJAI
Governance and audit layer for MCP tool calls. TrustLoop intercepts every AI agent action, logs it to a tamper-evident audit trail, blocks unsafe tools via kill-switch, and anchors proof to the blockchain. Drop it into any MCP setup in minutes, no code changes required.
Haldir
ExposureGuard
The guardian layer for AI agents. Scoped sessions with spend limits (Gate), AES-encrypted secrets (Vault), immutable audit trail with anomaly detection (Watch), and proxy mode that intercepts every MCP tool call for policy enforcement. Human-in-the-loop approvals, webhooks, 10 MC
Agentmesh - AI agent governance middleware
angelnicolasc
Governance middleware for AI agents: deterministic policy enforcement, cryptographic audit trails with digital signatures, DLP/PII detection, Trust Score per agent (0-100), EU AI Act compliance (Art. 9, 11, 12, 14), Agent BOM generation, and Circuit Breaker. Native support for La
Schemabrain
Arun-kc
A read-only trust + intelligence layer between AI agents and your database — the agent never writes SQL, PII is refused before the query runs, and every call lands in a tamper-evident audit log. Postgres today.
AgentSeal
JoeyBrar
Every agent action is recorded in a SHA-256 hash chain. With this, you can actually prove to clients that your agent did what it said it did. Record, query, verify, and export agent activity.
Kamy
Kamy-Development
The document layer for AI-native software. From your agent runtime, generate PDFs from templates, sign them with PAdES B-LT cryptographic signatures (own CA, RFC 3161 timestamps, embedded CRL), edit / fill / redact existing PDFs, and produce a tamper-evident audit trail anyone ca
PCI DSS MCP
shyshlakov
PCI DSS v4.0.1 static-analysis MCP server for Go payment service codebases. 12 scanners detect PAN/CVV exposure, weak crypto, missing audit logs, vulnerable deps, TLS misconfig, auth weaknesses, plus CycloneDX 1.6 SBOM generation. Each finding maps to the exact PCI requirement. A
Sentinelgate
Sentinel-Gate
Open-source MCP proxy for AI agent access control. Intercepts every tool call with CEL policies, RBAC, full audit trail, content scanning, and Admin UI. Single binary, zero dependencies.
Mailx Tools
Mailwarm
MCP server for email deliverability: validate SPF/DKIM/DMARC/BIMI, check blacklists, test SMTP/IMAP, look up DNS, and generate ready-to-deploy records for any major email provider. Ships with two one-click prompts (audit-deliverability, setup-dns). Public, no auth.
Chron
SirinivasK
AI tools show when you sent a message. Chron logs when the AI responded too — and keeps a permanent, queryable record of every exchange across every tool you use. Works with Claude Desktop, Claude Code, Cursor, Windsurf, and any MCP-compatible AI tool. Every exchange is stored wi
Preloop
preloop
Preloop is the MCP Governance Layer. Add approval gates to AI tool calls. Intercept risky actions, collect human decisions, and keep an audit trail.
Oathe Mcp
oathe-ai
MCP server for https://oathe.ai security audits. Runtime behavioral analysis and security scanner for AI systems. Check trust scores before installing MCP servers, plugins, or AI agent skills.
turva.dev
erekola
The public read-only MCP server for turva.dev, live at mcp.turva.dev/mcp. Published in the official MCP registry as dev.turva/turva-mcp.
Behavioural Prediction Mcp
ChainAware
The Behavioural Prediction MCP Server provides AI-powered tools to analyze wallet behaviour prediction,fraud detection and rug pull prediction.
Attestor
bolnet
Audit-grade memory backbone for agent teams. Bi-temporal facts (event time + transaction time, with recall(as_of=...) replay), 6-step deterministic retrieval (no LLM in the critical path), conversation ingest with speaker-locked dual-pass extraction, per-tenant Postgres row-level
AIR Blackbox MCP Server
airblackbox
EU AI Act compliance scanning for Python AI agents. 10 tools that scan, analyze, and fix compliance gaps across LangChain, CrewAI, AutoGen, OpenAI, and RAG pipelines. Checks 6 EU AI Act articles with HMAC-SHA256 tamper-evident audit trails. pip install air-blackbox-mcp. August 20
Ai Visibility Mcp
krissanders
MCP server that audits AI-bot visibility. Reports per-bot robots.txt verdicts for 22 AI user-agents (GPTBot, ClaudeBot, PerplexityBot, Google-Extended, etc.), Cloudflare AI-default flags, on-page schema, sitemap, llms.txt, SPA-shell detection, and cross-model brand mentions via P
Twira
TwiraHQ
Coding power tools for AI agents. 18 deterministic MCP tools: code-graph search, SAST, blast radius, wire-level PII redaction, signed audit chain. Works with Claude Code, Codex, Gemini, Cursor. Free tier on install.
Simosphere Ai · Governed Access For Microsoft 365
SIMOSphereOS
AI Governance Infrastructure for Microsoft 365. 24 MCP tools with policy enforcement, Need-to-Know compliance filter, revision-safe audit trail, and per-resource scope control. Deployed in your own Azure tenant — your data never leaves. DSGVO-first, EU AI Act ready.
Ipayx Fx Audit
iPAYX-Technologies
Detects hidden FX bank spreads vs mid-market rates. Score 0-10 with overpayment estimate in CAD. FINTRAC registered MSB. Rail-agnostic audit for all major banks.
npm-package-mcp-server
Pratham1264
The npm-package-mcp-server allows users to efficiently access and analyze source code from any NPM package. With features like smart file discovery and selective code reading, it streamlines the process for developers. 🐙🌐
Agent Receipts
webaesbyamin
Cryptographic accountability for AI agents. Ed25519-signed receipts for every MCP tool call — constraints, chains, AI judgment, invoicing, local dashboard.
Dear User
bleedmode
Tells you how you and your Claude agent actually work together. Reads your CLAUDE.md, hooks, skills, memory, and scheduled tasks — then writes you a letter. Three core tools: collab (collaboration scoring + lint), security (secrets scan, prompt-injection surfaces, rule conflicts)
Token Safety X402
Br0ski777
Token contract safety scanner (honeypot, tax, proxy, blacklist, risk score) -- x402 micropayment API + MCP server for AI agents
Novyx MCP
novyxlabs
Persistent memory for AI agents. 72 MCP tools for remember, recall, rollback, audit,