62
/100
C
◐ Assessed 3⁄3
pentesting-mcp-servers-checklist
A practical, community-driven checklist for pentesting MCP servers. Covers traffic analysis, tool-call behavior, namespace abuse, auth flows, and remote server risks. Maintained by Appsecco and licensed for remixing.
Links:
Assessed visibility
— 3/3 applicable dimensions scored
✓ Schema Quality
— Protocol
— Reliability
✓ Docs & Maintenance
✓ Security Hygiene
— Schema Interpretability
Schema Quality
44
42% weight
Protocol Compliance
N/A
Local server
Reliability
N/A
Local server
Docs & Maintenance
49
25% weight
Security Hygiene
95
33% weight
Score History
Category Trends
Static Analysis
| Metric | Score | Rating |
|---|---|---|
| Schema Completeness | 30 | Poor |
| Description Quality | 65 | Fair |
| Documentation Coverage | 25 | Poor |
| Maintenance Pulse | 76 | Good |
| Dependency Health | — | Poor |
| License Clarity | 70 | Good |
| Version Hygiene | 90 | Good |
Analyzed 1 month, 1 week ago
Add this to your README to display your MCP Scoreboard grade:
