io.github.gautamvarmadatla/mcpsafetywarden

MCP proxy adding security scanning, behavioral profiling, risk gating, and safe tool call execution.

0 tools GitHub

No known CVEs

No license

Maintenance unknown

No commit data

Untested

Transport: stdio

0 tools

Grade F

Security

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Untested on Claude Desktopstdio · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "io-github-gautamvarmadatla-mcpsafetywarden": {
      "command": "<see-readme>",
      "args": []
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/io-github-gautamvarmadatla-mcpsafetywarden)](https://mcppedia.org/s/io-github-gautamvarmadatla-mcpsafetywarden)

Read me

What io.github.gautamvarmadatla/mcpsafetywarden does

MCP proxy adding security scanning, behavioral profiling, risk gating, and safe tool call execution.

Test This Server

No automated test available for this server. Check the GitHub README for setup instructions.

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

16/100across 5 weighted dimensions

How we score →

0255075100

−84

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

No known CVEs.

No package registry to scan.

Help improve this page

This server is missing a description. Tools and install config are also missing.If you've used it, help the community.

Add information

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is io.github.gautamvarmadatla/mcpsafetywarden safe to use?: io.github.gautamvarmadatla/mcpsafetywarden has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.
How do I install io.github.gautamvarmadatla/mcpsafetywarden?: io.github.gautamvarmadatla/mcpsafetywarden can be installed by cloning its GitHub repository and following the setup instructions in the README.
What AI clients work with io.github.gautamvarmadatla/mcpsafetywarden?: io.github.gautamvarmadatla/mcpsafetywarden is compatible with Claude Desktop, Cursor, Claude Code, and most MCP clients that support stdio transport. It uses stdio transport.

Similar servers

Others in security

View all →

io.github.xkumakichi/xaip-mcp-server92

AI agents get on-chain identity, credentials, reputation, escrow, and persistent memory on XRPL.

Remnux Mcp Server88

MCP server for using the REMnux malware analysis toolkit via AI assistants

65 5

Ggmcp88

MCP server for scanning and remediating hardcoded secrets using GitGuardian’s API. Detect over 500 secret types and prevent credential leaks before code goes public.

34 5

MCPpedia88

Search, evaluate, and compare 17,000+ MCP servers — each scored on security, maintenance, and efficiency.

1 5

MCP Security Weekly

Get CVE alerts and security updates for io.github.gautamvarmadatla/mcpsafetywarden and similar servers.

Community

Discussion

Start a conversation

Ask a question, share a tip, or report an issue.

Has anyone used this with Cursor?How do you handle auth?Any alternatives?

Overview

Most MCP servers expose tools with no information about what those tools actually do at runtime: whether they write data, call external services, delete things, or produce outputs that contain adversarial content.

Instead of calling a wrapped server's tools directly, you route calls through this wrapper. It classifies each tool, builds a behavior profile from observed runs, checks for injection attacks, and blocks or gates risky tools before they execute.

Behavioral profiling

Static classification of effect class (read_only, additive_write, mutating_write, external_action, destructive), retry safety, and destructiveness.

LLM-assisted classification via Anthropic, OpenAI, Gemini, or Ollama - LLM and rule-based signals are combined via weighted voting, producing higher confidence across all tools.

Observed stats updated after every proxied call: p50/p95 latency, failure rate, output size, schema stability.

Security scanning

mcpsafety+ five-stage pipeline: Recon, Planner, Hacker (live probing), Auditor (CVE/Arxiv research), Supervisor (final report). Enhanced over mcpsafetyscanner (Radosevich & Halloran, arxiv 2504.03767).

LLM provider choice for mcpsafety+: Anthropic, OpenAI, Gemini, or Ollama (local, no API key).

Multi-server scan: run the full pipeline against every registered server in one call via scan_all_servers.

Cisco AI Defense: AST and taint analysis, YARA rules, optional cloud ML engine.

Snyk: prompt injection, tool shadowing, toxic data flows, hardcoded secrets.

Kali MCP integration: if a Kali Linux MCP server is registered, quick_scan, vulnerability_scan, and traceroute run against the target host at the start of the pipeline. The results are embedded in the Recon output so the Planner can ground its attack hypotheses in real port and service data rather than guessing from tool schemas alone.

Burp Suite MCP integration: if a Burp Suite MCP server is registered, the Hacker stage sends raw HTTP/1.1 probes directly to the MCP endpoint (malformed JSON, missing headers, oversized payloads), triggers Collaborator out-of-band payloads to detect blind SSRF (Pro edition), and pulls automated scanner findings (Pro edition). Proxy history feeds the Auditor as raw evidence. Community edition tools run automatically; Pro-only tools are tried and silently skipped if unavailable.

All findings stored and

Frequently Asked Questions

Is io.github.gautamvarmadatla/mcpsafetywarden safe to use?

io.github.gautamvarmadatla/mcpsafetywarden has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments.

How do I install io.github.gautamvarmadatla/mcpsafetywarden?

io.github.gautamvarmadatla/mcpsafetywarden can be installed by cloning its GitHub repository and following the setup instructions in the README.

What AI clients work with io.github.gautamvarmadatla/mcpsafetywarden?

io.github.gautamvarmadatla/mcpsafetywarden is compatible with Claude Desktop, Cursor, Claude Code, and most MCP clients that support stdio transport. It uses stdio transport.

Overview

Behavioral profiling

Static classification of effect class (read_only, additive_write, mutating_write, external_action, destructive), retry safety, and destructiveness.

LLM-assisted classification via Anthropic, OpenAI, Gemini, or Ollama - LLM and rule-based signals are combined via weighted voting, producing higher confidence across all tools.

Observed stats updated after every proxied call: p50/p95 latency, failure rate, output size, schema stability.

Security scanning

LLM provider choice for mcpsafety+: Anthropic, OpenAI, Gemini, or Ollama (local, no API key).

Multi-server scan: run the full pipeline against every registered server in one call via scan_all_servers.

Cisco AI Defense: AST and taint analysis, YARA rules, optional cloud ML engine.

Snyk: prompt injection, tool shadowing, toxic data flows, hardcoded secrets.

All findings stored and

io.github.gautamvarmadatla/mcpsafetywarden

Install in your client