Is com.scopeblind/protect-mcp safe to use?

com.scopeblind/protect-mcp has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.

How do I install com.scopeblind/protect-mcp?

com.scopeblind/protect-mcp supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.

What AI clients work with com.scopeblind/protect-mcp?

com.scopeblind/protect-mcp is compatible with claude-desktop, cursor, claude-code. It uses stdio and http transport.

Is com.scopeblind/protect-mcp actively maintained?

com.scopeblind/protect-mcp is actively maintained — last commit was 12 days ago. It has 6 GitHub stars.

com.scopeblind/protect-mcp

protect-mcp

Signed receipts and Cedar policies for AI agent tool calls. Claude Code hooks, MCP gateway.

6 270/wk 0 tools GitHub npm

No known CVEs

No license

Actively maintained

Last commit 12d ago

Works with most clients

Transport: stdio, http

0 tools

Grade F

Edit this pageView history

Security AI / ML

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopstdio, http · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "com-scopeblind-protect-mcp": {
      "args": [
        "-y",
        "protect-mcp"
      ],
      "command": "npx"
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/com-scopeblind-protect-mcp)](https://mcppedia.org/s/com-scopeblind-protect-mcp)

Read me

What com.scopeblind/protect-mcp does

Enterprise security gateway for MCP servers and Claude Code hooks. Signed receipts, Cedar policies, and swarm-aware audit trails.

Test This Server

Run this in your terminal to verify the server starts. Then let us know if it worked — your result helps other developers.

npx -y 'protect-mcp' 2>&1 | head -1 && echo "✓ Server started successfully"

After testing, let us know if it worked:

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

56/100across 5 weighted dimensions

How we score →

0255075100

−44

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

No known CVEs.

Checked protect-mcp against OSV.dev.

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is com.scopeblind/protect-mcp safe to use?: com.scopeblind/protect-mcp has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.
How do I install com.scopeblind/protect-mcp?: com.scopeblind/protect-mcp supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.
What AI clients work with com.scopeblind/protect-mcp?: com.scopeblind/protect-mcp is compatible with claude-desktop, cursor, claude-code. It uses stdio and http transport.
Is com.scopeblind/protect-mcp actively maintained?: com.scopeblind/protect-mcp is actively maintained — last commit was 12 days ago. It has 6 GitHub stars.

Similar servers

Others in security / ai-ml

View all →

Sequential Thinking MCP Server98

Dynamic problem-solving through sequential thought chains

86.4k 1

Memory MCP Server98

Persistent memory using a knowledge graph

86.4k 5

Antigravity Workspace Template96

Workspace template + MCP server for Claude Code, Codex CLI, Cursor & Windsurf. Multi-agent knowledge engine (ag-refresh / ag-ask) that turns any codebase into a queryable AI assistant.

1.2k 2

Modelcontextprotocol96

The official MCP server implementation for the Perplexity API Platform

2.2k 4

MCP Security Weekly

Get CVE alerts and security updates for com.scopeblind/protect-mcp and similar servers.

Community

Discussion

Start a conversation

Ask a question, share a tip, or report an issue.

Has anyone used this with Cursor?How do you handle auth?Any alternatives?

Edit this pageView history

Security AI / ML

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopstdio, http · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "com-scopeblind-protect-mcp": {
      "args": [
        "-y",
        "protect-mcp"
      ],
      "command": "npx"
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/com-scopeblind-protect-mcp)](https://mcppedia.org/s/com-scopeblind-protect-mcp)

Read me

What com.scopeblind/protect-mcp does

Enterprise security gateway for MCP servers and Claude Code hooks. Signed receipts, Cedar policies, and swarm-aware audit trails.

Test This Server

Run this in your terminal to verify the server starts. Then let us know if it worked — your result helps other developers.

npx -y 'protect-mcp' 2>&1 | head -1 && echo "✓ Server started successfully"

After testing, let us know if it worked:

README

protect-mcp

Enterprise security gateway for MCP servers and Claude Code hooks. Signed receipts, Cedar policies, and swarm-aware audit trails.

Integrated into Microsoft Agent Governance Toolkit (Tutorial 33 merged; sb-runtime integration PR #1202 open) | IETF Internet-Draft (draft-02 pending) | AGT Integration Profile | Live demo: acta.today/wiki

Quick Start — Claude Code

Two commands. Every tool call is receipted.

# 1. Generate hooks, keys, Cedar policy, and /verify-receipt skill
npx protect-mcp init-hooks

# 2. Start the hook server
npx protect-mcp serve

Open Claude Code in the same project. Every tool call is now intercepted, evaluated, and signed.

What `init-hooks` creates

File	Purpose
`.claude/settings.json`	Hook config (PreToolUse, PostToolUse, + 9 lifecycle events)
`keys/gateway.json`	Ed25519 signing keypair (auto-gitignored)
`policies/agent.cedar`	Starter Cedar policy — customize to your needs
`protect-mcp.json`	JSON policy with signing + rate limits
`.claude/skills/verify-receipt/SKILL.md`	`/verify-receipt` skill for Claude Code

Architecture

Claude Code  →  POST /hook  →  protect-mcp (Cedar + sign)  →  response
                                    ↓
                            .protect-mcp-log.jsonl
                            .protect-mcp-receipts.jsonl

PreToolUse: synchronous Cedar policy check → deny blocks the tool
PostToolUse: async receipt signing → zero latency impact
deny is architecturally final — it cannot be overridden by the model or other hooks

Endpoints

Method	Path	Description
POST	`/hook`	Claude Code hook endpoint
GET	`/health`	Server status, policy info, signer info
GET	`/receipts`	Recent signed receipts
GET	`/receipts/latest`	Most recent receipt
GET	`/suggestions`	Auto-generated Cedar policy fix suggestions
GET	`/alerts`	Config tamper detection alerts

Verify receipts

# Inside Claude Code:
/verify-receipt

# From terminal:
curl http://127.0.0.1:9377/receipts/latest | jq .
npx protect-mcp receipts

# Check policy suggestions:
curl http://127.0.0.1:9377/suggestions | jq .

Quick Start — MCP Server Wrapper

Wrap any stdio MCP server as a transparent proxy:

# Shadow mode — log every tool call, enforce nothing
npx protect-mcp -- node my-server.js

# Enforce mode with policy
npx protect-mcp --policy protect-mcp.json --enforce -- node my-server.js

# Generate keys + config template
npx protect-mcp init

How It Works

protect-mcp evaluates every tool call against a policy (JSON, Cedar, or external PDP), signs the decision as an Ed25519 receipt, and logs the result.

Two integration modes:

| Mode | Transport | Use Case | |------|------

... View full README on GitHub

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

56/100across 5 weighted dimensions

How we score →

0255075100

−44

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

No known CVEs.

Checked protect-mcp against OSV.dev.

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is com.scopeblind/protect-mcp safe to use?: com.scopeblind/protect-mcp has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.
How do I install com.scopeblind/protect-mcp?: com.scopeblind/protect-mcp supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.
What AI clients work with com.scopeblind/protect-mcp?: com.scopeblind/protect-mcp is compatible with claude-desktop, cursor, claude-code. It uses stdio and http transport.
Is com.scopeblind/protect-mcp actively maintained?: com.scopeblind/protect-mcp is actively maintained — last commit was 12 days ago. It has 6 GitHub stars.

Similar servers

Others in security / ai-ml

View all →

Sequential Thinking MCP Server98

Dynamic problem-solving through sequential thought chains

86.4k 1

Memory MCP Server98

Persistent memory using a knowledge graph

86.4k 5

Antigravity Workspace Template96

Workspace template + MCP server for Claude Code, Codex CLI, Cursor & Windsurf. Multi-agent knowledge engine (ag-refresh / ag-ask) that turns any codebase into a queryable AI assistant.

1.2k 2

Modelcontextprotocol96

The official MCP server implementation for the Perplexity API Platform

2.2k 4

MCP Security Weekly

Get CVE alerts and security updates for com.scopeblind/protect-mcp and similar servers.

Community

Discussion

Start a conversation

Ask a question, share a tip, or report an issue.

Has anyone used this with Cursor?How do you handle auth?Any alternatives?

com.scopeblind/protect-mcp

Install in your client

What com.scopeblind/protect-mcp does

Test This Server

Why this score

56/100across 5 weighted dimensions

Security

Reviews

Frequently Asked Questions

Similar servers

Discussion

com.scopeblind/protect-mcp

Install in your client

What com.scopeblind/protect-mcp does

Test This Server

protect-mcp

Quick Start — Claude Code

What init-hooks creates

Architecture

Endpoints

Verify receipts

Quick Start — MCP Server Wrapper

How It Works

Why this score

56/100across 5 weighted dimensions

Security

Reviews

Frequently Asked Questions

Similar servers

Discussion

protect-mcp

Quick Start — Claude Code

What init-hooks creates

Architecture

Endpoints

Verify receipts

Quick Start — MCP Server Wrapper

How It Works

What `init-hooks` creates

What `init-hooks` creates