Full website health audit — SSL, DNS, DMARC/SPF/DKIM, performance, uptime, links
Config is the same across clients — only the file and path differ.
{
"mcpServers": {
"sitehealth": {
"args": [
"-y",
"sitehealth-mcp"
],
"command": "npx"
}
}
}Are you the author?
Add this badge to your README to show your security score and help users find safe servers.
Full website health audit in one MCP tool call. Zero API keys required.
Run this in your terminal to verify the server starts. Then let us know if it worked — your result helps other developers.
npx -y 'sitehealth-mcp' 2>&1 | head -1 && echo "✓ Server started successfully"
After testing, let us know if it worked:
Five weighted categories — click any category to see the underlying evidence.
No known CVEs.
Checked sitehealth-mcp against OSV.dev.
Click any tool to inspect its schema.
Be the first to review
Have you used this server?
Share your experience — it helps other developers decide.
Sign in to write a review.
Others in developer-tools / security
Read, write, and manage files on the local filesystem
A Model Context Protocol (MCP) server and CLI that provides tools for agent use when working on iOS and macOS projects.
Manage Supabase projects — databases, auth, storage, and edge functions
XcodeBuildMCP provides tools for Xcode project management, simulator management, and app utilities.
MCP Security Weekly
Get CVE alerts and security updates for io.github.carsonroell-debug/sitehealth-mcp and similar servers.
Start a conversation
Ask a question, share a tip, or report an issue.
Sign in to join the discussion.
Full website health audit in one MCP tool call. Zero API keys required.
One call. Six checks. Scored report.
One-click install: Install on MCPize |
npx sitehealth-mcp
{
"mcpServers": {
"sitehealth": {
"command": "npx",
"args": ["-y", "sitehealth-mcp"]
}
}
}
Then ask your AI agent:
"Audit the health of example.com"
| Tool | Description |
|---|---|
audit_site | Full audit — all 6 checks, scored report |
check_ssl | SSL cert validity and expiry |
check_dns | DNS records and resolution |
check_email_auth | DMARC/SPF/DKIM validation |
check_performance | TTFB, load time, page weight |
check_uptime | HTTP ping + response time |
check_links | Broken link detection |
| Tool | Free | Pro ($19/mo) |
|---|---|---|
check_ssl | Yes | Yes |
check_dns | Yes | Yes |
audit_site | - | Yes |
check_email_auth | - | Yes |
check_performance | - | Yes |
check_uptime | - | Yes |
check_links | - | Yes |
Free tier gives you SSL and DNS checks. Pro unlocks the full 6-check audit with A-F scoring, email authentication, performance, uptime, and broken link detection.
Upgrade to Pro on MCPize — $19/mo or $190/yr.
{
"url": "https://example.com",
"overallScore": 82,
"overallGrade": "B",
"criticalIssues": [
"No DMARC record — required by Gmail/Yahoo/Microsoft for deliverability"
],
"warnings": [
"SSL certificate expires in 28 days — renew soon",
"2 broken links found out of 47 checked"
],
"recommendations": [
"Add a DMARC record: v=DMARC1; p=quarantine; rua=mailto:dmarc@example.com",
"Enable gzip/brotli compression to reduce transfer size"
]
}
All checks use Node.js builtins (tls, dns/promises, fetch) — no external API keys, no costs, no rate limits.
audit_site("example.com")
├── SSL check (tls socket) → cert validity, expiry
├── DNS check (dns/promises) → record resolution
├── Email auth (DNS TXT lookups) → DMARC, SPF, DKIM
├── Performance (timed fetch) → TTFB, page weight
├── Uptime (HEAD request) → reachability
└── Broken links (page crawl) → link validation
↓
Weighted score (0-100) + grade (A-F) + recommendations
| Check | Weight |
|---|---|
| SSL | 20% |
| Performance | 20% |
| Uptime | 20% |
| Email Auth | 15% |
| Links | 15% |
| DNS | 10% |
One-click install with managed hosting: Install on MCPize
npx sitehealth-mcp
MIT — Built by Freedom Engineers