Code & Scripts
MCP Security Audit Tool for Local Agent Stacks
A CLI scanner that reads local MCP server configs and emits a Markdown + JSON audit report covering tool surface area, auth methods, and blast radius.
A CLI scanner that reads local MCP server configs and emits a Markdown + JSON audit report covering tool surface area, auth methods, and blast radius.
What's Inside
- π¦mcpaudit/cli.py β CLI entry point (mcpaudit scan) with output flags and CI-ready exit codes
- π¦mcpaudit/discovery.py β Auto-finds MCP configs across all supported client locations
- π¦mcpaudit/rules.py β 12 static analysis rules covering auth, scope, transport, and blast radius
- π¦mcpaudit/report.py β Renders Markdown and JSON audit reports from findings
- π¦mcpaudit/templates/report.md.j2 β Jinja2 report template (customizable)
- π¦sample-report.md / sample-report.json β Pre-generated examples showing every severity level
- π¦tests/ β 58 passing unit tests with 4 fixture configs (minimal, risky, clean, worst-case)
- π¦README.md β Setup and usage guide; honest about what the tool does *not* cover
$29
One-time purchase
β‘Instant download after purchase
π§Download link sent to your email
π7-day download access
β
14-day money-back guarantee
View refund policyQuality Score
9/10