Is MCP Lattice safe to use?

MCP Lattice has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments. Licensed under Apache-2.0.

How do I install MCP Lattice?

MCP Lattice can be installed by cloning its GitHub repository and following the setup instructions in the README.

What AI clients work with MCP Lattice?

MCP Lattice is compatible with claude-desktop, cursor, claude-code. It uses sse and http transport.

Is MCP Lattice actively maintained?

MCP Lattice is recently maintained — last commit was 65 days ago. It has 8 GitHub stars.

MCP Lattice

Name: MCP Lattice
Author: panavinsingh

by panavinsingh

Security scanner for Model Context Protocol (MCP) with capability graph analysis. Detects emergent attack chains across multi-server AI agent deployments that no individual tool scan can find.

8 0 tools GitHub

No known CVEs

Apache-2.0 license

Maintained

Last commit 65d ago

Works with most clients

Transport: sse, http

0 tools

Grade F

Edit this pageView history

Security

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopsse, http · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "mcp-lattice": {
      "command": "<see-readme>",
      "args": []
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/mcp-lattice)](https://mcppedia.org/s/mcp-lattice)

Read me

What MCP Lattice does

Open-source MCP security scanner with capability graph analysis.

Test This Server

No automated test available for this server. Check the GitHub README for setup instructions.

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

34/100across 5 weighted dimensions

How we score →

0255075100

−66

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

No known CVEs.

No package registry to scan.

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is MCP Lattice safe to use?: MCP Lattice has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments. Licensed under Apache-2.0.
How do I install MCP Lattice?: MCP Lattice can be installed by cloning its GitHub repository and following the setup instructions in the README.
What AI clients work with MCP Lattice?: MCP Lattice is compatible with claude-desktop, cursor, claude-code. It uses sse and http transport.
Is MCP Lattice actively maintained?: MCP Lattice is recently maintained — last commit was 65 days ago. It has 8 GitHub stars.

Similar servers

Others in security

View all →

Evil Mcp Server93

An evil MCP server used for redteam testing

30 1

Ida Pro Mcp92

AI-powered reverse engineering assistant that bridges IDA Pro with language models through MCP.

9.0k 3

io.github.jasonxkensei/xproof92

Proof primitive for AI agents on MultiversX. Anchor file hashes on-chain as verifiable proofs.

1 1

Mcpki Server92

mcpki-server is the backend infrastructure for https://www.mcpki.org, enabling secure public key management and autonomous certificate handling for large language models (LLMs).

MCP Security Weekly

Get CVE alerts and security updates for MCP Lattice and similar servers.

Community

Discussion

Start a conversation

Ask a question, share a tip, or report an issue.

Has anyone used this with Cursor?How do you handle auth?Any alternatives?

Edit this pageView history

Security

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopsse, http · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "mcp-lattice": {
      "command": "<see-readme>",
      "args": []
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/mcp-lattice)](https://mcppedia.org/s/mcp-lattice)

Read me

What MCP Lattice does

Open-source MCP security scanner with capability graph analysis.

Test This Server

No automated test available for this server. Check the GitHub README for setup instructions.

README

MCP-Lattice

Open-source MCP security scanner with capability graph analysis.

The Problem

The Model Context Protocol (MCP) ecosystem has grown to over 10,000 servers, yet there is no comprehensive security tool to audit them. At least 25 CVEs and disclosure reports have documented vulnerabilities across tool poisoning, prompt injection, SSRF, and auth bypass classes. Existing scanners cover only a fraction of the attack surface and none analyze cross-server attack chains. MCP-Lattice fills that gap.

What MCP-Lattice Does

Auto-discovers MCP configurations for Claude Desktop, Cursor, Windsurf, VS Code, and Gemini CLI
34 detection templates covering prompt injection, tool poisoning, code execution, auth bypass, data exfiltration, supply chain, privilege escalation, and DoS
4-layer detection pipeline: L1 Pattern matching (<1ms), L2 Semantic analysis (~20ms), L3 Capability graph (~50ms), L4 Causal/LLM (planned)
4 output formats: terminal table, JSON, SARIF (for CI/CD), and HTML

Quick Start

Install

go install github.com/panavinsingh/MCP-Lattice/cmd/mcp-lattice@latest

Or download a prebuilt binary from the releases page.

Run

mcp-lattice scan                                    # auto-discover and scan all MCP servers
mcp-lattice scan --config ~/.config/claude/claude_desktop_config.json  # scan a specific config
mcp-lattice scan --format sarif -o results.sarif    # SARIF output for CI
mcp-lattice scan --severity high                    # only high and critical findings

What It Finds

Tool poisoning with hidden instructions
Prompt injection via tool descriptions and parameters
SSRF-prone parameters with no allowlists
Zero-auth servers exposed to the network
Toxic tool combinations across servers
Data exfiltration paths (filesystem to HTTP)
Privilege escalation through capability chaining
Supply chain risks in server dependencies

Capability Graph Analysis

MCP-Lattice builds a capability graph across all configured MCP servers, modeling what each tool can read, write, execute, and transmit. It then searches for cross-server attack chains -- for example, a filesystem-read tool on one server combined with an HTTP-send tool on another creates an exfiltration path. This is the key differentiator: no other scanner detects multi-server toxic combinations.

Results

We attempted to scan 100 MCP servers from the npm registry (75 scanned successfully, 25 timed out):

Metric	Value
Total findings	1,275 (759 Critical, 505 High, 11 Medium)
Cross-server attack chains	1,082 (84.9% of findings)
Servers with findings	34 of 75 scanned
Most affected servers	browser-devtools-mcp (150), Heroku (116), Notion (94), CircleCI (89)

Full methodology and reproduction scripts are in the research/ directory.

Contributing

We welcome contributions -- especially new detection templates, which are the easiest way to get started.

SECURITY.md -- reporting vulnerabilities in MCP-Lattice itself
TEMPLATE_AUTHORING.md -- writing custom detection templates
CONTRIBUTING.md -- development setup and pull request process

Documentation

Architecture -- detection pipeline and system design
Threat Model -- MCP threat taxonomy and attack classes
Template Authoring -- YAML template schema reference
[Contributing](doc

... View full README on GitHub

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

34/100across 5 weighted dimensions

How we score →

0255075100

−66

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

No known CVEs.

No package registry to scan.

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is MCP Lattice safe to use?: MCP Lattice has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments. Licensed under Apache-2.0.
How do I install MCP Lattice?: MCP Lattice can be installed by cloning its GitHub repository and following the setup instructions in the README.
What AI clients work with MCP Lattice?: MCP Lattice is compatible with claude-desktop, cursor, claude-code. It uses sse and http transport.
Is MCP Lattice actively maintained?: MCP Lattice is recently maintained — last commit was 65 days ago. It has 8 GitHub stars.

Similar servers

Others in security

View all →

Evil Mcp Server93

An evil MCP server used for redteam testing

30 1

Ida Pro Mcp92

AI-powered reverse engineering assistant that bridges IDA Pro with language models through MCP.

9.0k 3

io.github.jasonxkensei/xproof92

Proof primitive for AI agents on MultiversX. Anchor file hashes on-chain as verifiable proofs.

1 1

Mcpki Server92

mcpki-server is the backend infrastructure for https://www.mcpki.org, enabling secure public key management and autonomous certificate handling for large language models (LLMs).

MCP Security Weekly

Get CVE alerts and security updates for MCP Lattice and similar servers.

Community

Discussion

Start a conversation

Ask a question, share a tip, or report an issue.

Has anyone used this with Cursor?How do you handle auth?Any alternatives?