Show HN: MCP Security – Don't Blind Trust, Verify

Summary

MCP Security Suite 🛡️ Unified security framework for Model Context Protocol (MCP) servers 📖 Quick Start Guide - Get up and running in 3 minutes! ⚠️ Important Note for Scanning This Project: This repository contains intentionally malicious test files in mcp_test_cases/ and tests/ directories to validate our detection capabilities. When scanning this project: To exclude test files : python3 mighty_mcp.py check . --profile production : To force fresh scan (bypass cache) : python3 mighty_mcp.py check . --profile production --no-cache : To see detection working : python3 mighty_mcp.py check . (will show CRITICAL risk - this is expected!) : (will show CRITICAL risk - this is expected!) To debug LLM responses : python3 mighty_mcp.py check . --deep --debug : The malicious test files prove our scanner works correctly What is this? A comprehensive security analysis tool that protects against malicious MCP (Model Context Protocol) servers and tools. MCP servers give AI assistants powerful capabilities - but with that power comes serious security risks. This tool helps identify and prevent those risks. Why do you need this? MCP servers are becoming critical infrastructure for AI applications, but recent research shows: 43% of MCP servers have command injection vulnerabilities 30% allow unrestricted URL fetches (SSRF attacks) 22% leak files outside intended directories The GitHub MCP vulnerability showed how prompt injection can leak private repositories Recent Improvements 🎯 Context-Aware Detection (NEW) Smart filtering : Automatically detects security tools, test files, and examples : Automatically detects security tools, test files, and examples Reduced false positives : 70-90% reduction in false positives for security tooling code : 70-90% reduction in false positives for security tooling code DRY pattern management : Unified pattern configuration in patterns_config.py : Unified pattern configuration in Cache control : New --no-cache flag for fresh scans : New flag for fresh...