Security Ledger for the Agentic Ecosystem

Know what your
AI agents connect to.

Trust scores, vulnerability scanning, and cryptographic provenance for every MCP server — aggregated across 10+ registries.

--- servers indexed

--- registries

--- scans completed

--- active flags

Trust Scores

Every MCP server gets a Sigstore-signed score based on 11 security signals — from permission scope to tool description safety.

Annotation Verification

The MCP spec says tool annotations are "untrusted." We verify them with static analysis so you don't have to.

Transparency Log

Every score and scan result is recorded in Rekor's immutable transparency log. Cryptographic proof, not just promises.

Recently flagged

No flagged servers found.