Scanorama

Name: Scanorama
Rating: 2.3 (1 reviews)
Author: Telefonica

Scanorama is a command-line tool to perform static analysis of any MCP-based server (built with official MCP SDKs) and detect potential security issues.

StaleNot tested

Data

★ 8npm GitHub

46No CVEsstaleLGPL-3.0

Quick Install

{
  "mcpServers": {
    "scanorama": {
      "args": [
        "-y",
        "@telefonica/scanorama"
      ],
      "command": "npx"
    }
  }
}

Setup guide

Should you use this server?

Scanorama is a command-line tool to perform static analysis of any MCP-based server (built with official MCP SDKs) and detect potential security issues.

✓

Is it safe?

No known CVEs for @telefonica/scanorama.

No authentication — any process on your machine can connect.

LGPL-3.0. View license →

Is it maintained?

Last commit 258 days ago. 8 stars.

Will it work with my client?

Transport: stdio, sse, http. Works with Claude Desktop, Cursor, Claude Code, and most MCP clients.

Test This Server

Run this in your terminal to verify the server starts. Then let us know if it worked — your result helps other developers.

npx -y @telefonica/scanorama 2>&1 | head -1 && echo "✓ Server started successfully"

After testing, let us know if it worked:

Help improve this page

This server is missing a description. Tools and install config are also missing.If you've used it, help the community.

Add information

Score Breakdown

MCPpedia Score

Click each category to see evidence

46C

Last scored 8h ago

How we score →

Security

22/30

No known vulnerabilities.

✓

Known CVEs — No known CVEs for @telefonica/scanoramacheck OSV.dev

○

Tool safety — No tools to analyze

○

Tool poisoning — No tools to analyze

○

Injection vectors — No tools to analyze

✓

Tool stability — Tool definitions stable

○

Dependency health — found on deps.dev

✓

License — License: LGPL-3.0

○

Authentication — No authentication required