Is Ocireg Mcp safe to use?

Ocireg Mcp has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments. Licensed under Apache-2.0.

How do I install Ocireg Mcp?

Ocireg Mcp can be installed by cloning its GitHub repository and following the setup instructions in the README.

What can Ocireg Mcp do?

Ocireg Mcp provides 4 tools: get_image_info, list_tags, get_image_manifest, get_image_config. See the full tools list on the server page for descriptions and parameters.

What AI clients work with Ocireg Mcp?

Ocireg Mcp is compatible with claude-desktop, cursor, claude-code. It uses stdio and sse and http transport.

Is Ocireg Mcp actively maintained?

Ocireg Mcp is actively maintained — last commit was 0 days ago. It has 13 GitHub stars.

Ocireg Mcp

Name: Ocireg Mcp
Author: StacklokLabs

by StacklokLabs

An MCP (Model Context Protocol) server that provides tools for querying OCI registries and image references.

13 4 tools GitHub

No known CVEs

Apache-2.0 license

Actively maintained

Last commit 0d ago

Works with most clients

Transport: stdio, sse, http

4 tools · ~288 tok

Grade A · 0.1% of 200K ctx

Edit this pageView history

DevOps Cloud

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopstdio, sse, http · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "ocireg-mcp": {
      "command": "<see-readme>",
      "args": []
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/ocireg-mcp)](https://mcppedia.org/s/ocireg-mcp)

Read me

What Ocireg Mcp does

An MCP (Model Context Protocol) server that provides tools for querying OCI registries and image references.

Test This Server

No automated test available for this server. Check the GitHub README for setup instructions.

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

75/100across 5 weighted dimensions

How we score →

0255075100

−25

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

No known CVEs.

No package registry to scan.

Inventory

Tools (4)

Click any tool to inspect its schema.

~288 tokens total

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is Ocireg Mcp safe to use?: Ocireg Mcp has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments. Licensed under Apache-2.0.
How do I install Ocireg Mcp?: Ocireg Mcp can be installed by cloning its GitHub repository and following the setup instructions in the README.
What can Ocireg Mcp do?: Ocireg Mcp provides 4 tools: get_image_info, list_tags, get_image_manifest, get_image_config. See the full tools list on the server page for descriptions and parameters.
What AI clients work with Ocireg Mcp?: Ocireg Mcp is compatible with claude-desktop, cursor, claude-code. It uses stdio and sse and http transport.
Is Ocireg Mcp actively maintained?: Ocireg Mcp is actively maintained — last commit was 0 days ago. It has 13 GitHub stars.

Similar servers

Others in devops / cloud

View all →

Mcp Gitlab96

MCP server for using the GitLab API

1.5k 12

Observability Mcp95

MCP Server for GCP environment for interacting with various Observability APIs.

790 10

Alibabacloud Devops Mcp Server92

Yunxiao MCP Server provides AI assistants with the ability to interact with the Yunxiao platform. It provides a set of tools that interact with Yunxiao's API, allowing AI assistants to manage Codeup repository, Project, Pipeline, Packages etc.

110 7

Mcp Gitlab Server92

Enhanced MCP server for GitLab: group projects listing and activity tracking

50 2

MCP Security Weekly

Get CVE alerts and security updates for Ocireg Mcp and similar servers.

Community

Discussion

Start a conversation

Ask a question, share a tip, or report an issue.

Has anyone used this with Cursor?How do you handle auth?Any alternatives?

Edit this pageView history

DevOps Cloud

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopstdio, sse, http · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "ocireg-mcp": {
      "command": "<see-readme>",
      "args": []
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/ocireg-mcp)](https://mcppedia.org/s/ocireg-mcp)

Read me

What Ocireg Mcp does

An MCP (Model Context Protocol) server that provides tools for querying OCI registries and image references.

Test This Server

No automated test available for this server. Check the GitHub README for setup instructions.

README

OCI Registry MCP Server

An MCP (Model Context Protocol) server that provides tools for querying OCI registries and image references.

Overview

This project implements an SSE-based MCP server that allows LLM-powered applications to interact with OCI registries. It provides tools for retrieving information about container images, listing tags, and more.

Features

Get information about OCI images
List tags for repositories
Get image manifests
Get image configs

MCP Tools

The server provides the following MCP tools:

get_image_info

Get information about an OCI image.

Input:

image_ref: The image reference (e.g., docker.io/library/alpine:latest)

Output:

Image information including digest, size, architecture, OS, creation date, and number of layers

list_tags

List tags for a repository.

Input:

repository: The repository name (e.g., docker.io/library/alpine)

Output:

List of tags for the repository

get_image_manifest

Get the manifest for an OCI image.

Input:

image_ref: The image reference (e.g., docker.io/library/alpine:latest)

Output:

The image manifest

get_image_config

Get the config for an OCI image.

Input:

image_ref: The image reference (e.g., docker.io/library/alpine:latest)

Output:

The image config

Usage

Running with ToolHive (Recommended)

The easiest way to run the OCI Registry MCP server is using ToolHive, which provides secure, containerized deployment of MCP servers:

# Install ToolHive (if not already installed)
# See: https://docs.stacklok.com/toolhive/guides-cli/install

# Register a supported client so ToolHive can auto-configure your environment
thv client setup
# Run the OCI Registry MCP server (packaged as 'oci-registry' in ToolHive)
thv run oci-registry

# List running servers
thv list

# Get detailed information about the server
thv registry info oci-registry

The server will be available to your MCP-compatible clients and can query OCI registries for image information.

Authentication with ToolHive

If you need to access private registries, you can provide authentication credentials using ToolHive's secret management:

# For bearer token authentication
thv secret set oci-token
# Enter your bearer token when prompted

thv run --secret oci-token,target=OCI_TOKEN oci-registry

# For username/password authentication
thv secret set oci-username
thv secret set oci-password
# Enter your credentials when prompted

thv run --secret oci-username,target=OCI_USERNAME --secret oci-password,target=OCI_PASSWORD oci-registry

Development

Prerequisites

Go 1.21 or later
Access to OCI registries

Authentication

The server supports the following authentication methods for accessing private OCI registries (in order of priority):

HTTP Authorization Header (Highest Priority): Include a bearer token in the HTTP request's Authorization header:
- Authorization: Bearer <your-token>
- This method takes precedence over all other authentication methods
- When present, environment variables and Docker config are ignored
Bearer Token Environment Variable: Set the following environment variable:
- OCI_TOKEN: Bearer token for registry authentication
Username and Password: Set the following environment variables:
- OCI_USERNAME: Username for registry authentication
- OCI_PASSWORD: Password for registry authentication
Docker Config (Lowest Priority): If no other authentication is provided, the server will use the default Docker keychain, which reads credentials from ~/.docker/config.json.

Examples:

# HTTP Authorization header (for per-request authentication)
# This is handled automatically by the MCP client 

... [View full README on GitHub](https://github.com/StacklokLabs/ocireg-mcp#readme)

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

75/100across 5 weighted dimensions

How we score →

0255075100

−25

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

No known CVEs.

No package registry to scan.

Inventory

Tools (4)

Click any tool to inspect its schema.

~288 tokens total

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is Ocireg Mcp safe to use?: Ocireg Mcp has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments. Licensed under Apache-2.0.
How do I install Ocireg Mcp?: Ocireg Mcp can be installed by cloning its GitHub repository and following the setup instructions in the README.
What can Ocireg Mcp do?: Ocireg Mcp provides 4 tools: get_image_info, list_tags, get_image_manifest, get_image_config. See the full tools list on the server page for descriptions and parameters.
What AI clients work with Ocireg Mcp?: Ocireg Mcp is compatible with claude-desktop, cursor, claude-code. It uses stdio and sse and http transport.
Is Ocireg Mcp actively maintained?: Ocireg Mcp is actively maintained — last commit was 0 days ago. It has 13 GitHub stars.