Is Scanorama safe to use?

Scanorama has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments. Licensed under LGPL-3.0.

How do I install Scanorama?

Scanorama supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.

What AI clients work with Scanorama?

Scanorama is compatible with claude-desktop, cursor, claude-code. It uses stdio and sse and http transport.

Is Scanorama actively maintained?

Scanorama is less actively maintained — last commit was 310 days ago. It has 8 GitHub stars.

Scanorama

Name: Scanorama
Author: Telefonica

@telefonica/scanorama · by Telefonica

Scanorama is a command-line tool to perform static analysis of any MCP-based server (built with official MCP SDKs) and detect potential security issues.

8 1/wk 0 tools GitHub npm

No known CVEs

LGPL-3.0 license

Stale

Last commit 310d ago

Works with most clients

Transport: stdio, sse, http

0 tools

Grade F

Edit this pageView history

Security Developer Tools

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopstdio, sse, http · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "scanorama": {
      "args": [
        "-y",
        "@telefonica/scanorama"
      ],
      "command": "npx"
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/scanorama)](https://mcppedia.org/s/scanorama)

Read me

What Scanorama does

Scan local or remote codebases, get security reports before using MCP servers.

Test This Server

Run this in your terminal to verify the server starts. Then let us know if it worked — your result helps other developers.

npx -y '@telefonica/scanorama' 2>&1 | head -1 && echo "✓ Server started successfully"

After testing, let us know if it worked:

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

48/100across 5 weighted dimensions

How we score →

0255075100

−52

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

No known CVEs.

Checked @telefonica/scanorama against OSV.dev.

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is Scanorama safe to use?: Scanorama has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments. Licensed under LGPL-3.0.
How do I install Scanorama?: Scanorama supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.
What AI clients work with Scanorama?: Scanorama is compatible with claude-desktop, cursor, claude-code. It uses stdio and sse and http transport.
Is Scanorama actively maintained?: Scanorama is less actively maintained — last commit was 310 days ago. It has 8 GitHub stars.

Similar servers

Others in security / developer-tools

View all →

XcodeBuildMCP97

A Model Context Protocol (MCP) server and CLI that provides tools for agent use when working on iOS and macOS projects.

5.8k 2

Antigravity Workspace Template96

Workspace template + MCP server for Claude Code, Codex CLI, Cursor & Windsurf. Multi-agent knowledge engine (ag-refresh / ag-ask) that turns any codebase into a queryable AI assistant.

1.2k 2

Figma Console Mcp96

MCP server for accessing Figma plugin console logs and screenshots via Cloudflare Workers or local mode

1.7k 2

Mcp Gitlab96

MCP server for using the GitLab API

1.6k 12

MCP Security Weekly

Get CVE alerts and security updates for Scanorama and similar servers.

Community

Discussion

Start a conversation

Ask a question, share a tip, or report an issue.

Has anyone used this with Cursor?How do you handle auth?Any alternatives?

Edit this pageView history

Security Developer Tools

Step 1

Install in your client

Config is the same across clients — only the file and path differ.

Supported in Claude Desktopstdio, sse, http · Node 18+

Paste into ~/Library/Application Support/Claude/claude_desktop_config.json

{
  "mcpServers": {
    "scanorama": {
      "args": [
        "-y",
        "@telefonica/scanorama"
      ],
      "command": "npx"
    }
  }
}

Are you the author?

Add this badge to your README to show your security score and help users find safe servers.

Embed in your READMEAbout badges →

[![MCPpedia Score](https://mcppedia.org/api/badge/scanorama)](https://mcppedia.org/s/scanorama)

Read me

What Scanorama does

Scan local or remote codebases, get security reports before using MCP servers.

Test This Server

Run this in your terminal to verify the server starts. Then let us know if it worked — your result helps other developers.

npx -y '@telefonica/scanorama' 2>&1 | head -1 && echo "✓ Server started successfully"

After testing, let us know if it worked:

README

Scanorama

MCP prompt injection security scanner

Scan local or remote codebases, get security reports before using MCP servers.

🚀 What is Scanorama?

Scanorama is a powerful command-line interface (CLI) tool designed for security professionals and developers to statically analyze MCP server. It intelligently scans MCP server source code searching for malicious or unsafely MCP servers.

MCP tools descriptions, when consumed by Large Language Model (LLM) agents, can be a vector for prompt injection attacks, leading to unintended agent behavior, data exfiltration, or other security risks. Scanorama helps you identify these threats proactively.

Understanding and Mitigating Prompt Injection in MCP-based Agents

https://github.com/user-attachments/assets/c912b358-afdf-4cd7-85ea-c461907e9a67

Key Features:

🔎 Deep Code Analysis: Semantically understands code (not just syntactically)
🎯 Prompt Injection Detection: Leverages LLMs to analyze extracted tool descriptions for common and sophisticated prompt injection patterns.
💻 Multi-Language Support: Works with all MCP SDKs: Python, TypeScript, Java, Kotlin, C#...

scanorama --clone https://github.com/someuser/vulnerable-mcp-tools.git --provider google --model gemini-1.5-flash-latest --output gemini_report.json

🔗 Flexible Source Input: Scan local directories or directly clone and analyze public GitHub repositories.

scanorama --path /path/to/your/mcp-project

📄 Clear Reporting: Generates easy-to-understand console reports
💾 JSON Output: --ouput filename
🤖 Multi-Provider LLM Support: Choose from a range of LLM providers --list-models
- -m, --model <id>: Specify the model ID for the chosen provider.
  - For OpenAI, Google, Anthropic: Use a model ID like gpt-4o, gemini-1.5-flash-latest, claude-3-haiku-20240307.
  - For Azure: This must be your specific Deployment ID.
⚙️ Configurable Analysis: Adjust LLM temperature and select specific models.

What is MCP?

The Model Context Protocol (MCP) is an emerging open standard that defines a universal interface for connecting Large Language Models (LLMs) to external data sources, tools, and services. The most popular standardized way for LLMs to interact with the outside world. You can see more here

⚠️ Why scan MCP servers ?

While MCP offers great flexibility, it also introduces a new attack surface. The descriptions of MCP tools can be injected directly into an LLM agent's context (prompt) and it allows third party agents take control of your agents.

A maliciously crafted tool description can contain hidden instructions designed to:

Hijack the agent's original purpose.
Exfiltrate sensitive data processed by the agent.
Instruct the agent to perform unauthorized actions.
Manipulate other tools or data sources the agent interacts with.

This is a form of prompt injection. Scanorama helps you identify such potentially "poisoned" tool descriptions before they can cause harm.

Research about how MCP tool description can be exploited to take control of LLM agents: Understanding and Mitigating Prompt Injection in MCP-based Agents

💻 Installation

You can install Scanorama using npm:

npm install -g @telefonica/scanorama

Veri

... View full README on GitHub

Loading README…

Scored, not listed

Why this score

Five weighted categories — click any category to see the underlying evidence.

Score breakdown

48/100across 5 weighted dimensions

How we score →

0255075100

−52

Security

Maintenance

Efficiency

Documentation

Compatibility

Categoriesclick a row to see evidence

Security

OSV.dev

No known CVEs.

Checked @telefonica/scanorama against OSV.dev.

Community

Reviews

Be the first to review

Have you used this server?

Share your experience — it helps other developers decide.

How easy was setup?Did it work reliably?How was the documentation?

Frequently Asked Questions

Is Scanorama safe to use?: Scanorama has no known CVEs as of the latest MCPpedia security scan. It does not require authentication, so any local process can connect — keep this in mind in shared environments. Licensed under LGPL-3.0.
How do I install Scanorama?: Scanorama supports copy-paste install configs on its MCPpedia page for Claude Desktop, Cursor, and Claude Code. Scroll to the Quick Install section and select your client.
What AI clients work with Scanorama?: Scanorama is compatible with claude-desktop, cursor, claude-code. It uses stdio and sse and http transport.
Is Scanorama actively maintained?: Scanorama is less actively maintained — last commit was 310 days ago. It has 8 GitHub stars.

Similar servers

Others in security / developer-tools

View all →

XcodeBuildMCP97

A Model Context Protocol (MCP) server and CLI that provides tools for agent use when working on iOS and macOS projects.

5.8k 2

Antigravity Workspace Template96

Workspace template + MCP server for Claude Code, Codex CLI, Cursor & Windsurf. Multi-agent knowledge engine (ag-refresh / ag-ask) that turns any codebase into a queryable AI assistant.

1.2k 2

Figma Console Mcp96

MCP server for accessing Figma plugin console logs and screenshots via Cloudflare Workers or local mode

1.7k 2

Mcp Gitlab96

MCP server for using the GitLab API

1.6k 12

MCP Security Weekly

Get CVE alerts and security updates for Scanorama and similar servers.

Community