Best MCP Servers for Security & Authentication
Top-ranked MCP servers for secrets management, auth integration, compliance scanning, and security tooling. Scored from the AgentRank index.
Security and authentication MCP servers give agents controlled access to secrets managers, identity providers, vulnerability scanners, and compliance tools. They are essential for any agent that operates in production environments where credentials, permissions, and audit trails matter.
This guide ranks the top security-focused MCP servers from the AgentRank index — covering HashiCorp Vault, AWS Secrets Manager, OAuth integrations, SAST/DAST scanning tools, and compliance automation.
Top Security & Authentication MCP servers
Ranked by the composite AgentRank score — a weighted blend of stars (15%), freshness (25%), issue health (25%), contributors (10%), and inbound dependents (25%). Average score across these 8 tools: 85.2.
| # | Repository | Score | Stars | Lang | Updated |
|---|---|---|---|---|---|
| 1 | agentic-community/mcp-gateway-registry Enterprise-ready MCP Gateway & Registry that centralizes AI development tools with secure … | 91.8 | 497 | Python | today |
| 2 | gensecaihq/Wazuh-MCP-Server AI-powered security operations for Wazuh SIEM—use any MCP-compatible client to ask securit… | 89.6 | 140 | Python | 1d ago |
| 3 | lanbaoshen/mcp-jenkins The Model Context Protocol (MCP) is an open-source implementation that bridges Jenkins wit… | 85.5 | 95 | Python | 9d ago |
| 4 | better-auth/better-icons Skill and MCP server for searching and retrieving icons | 84.7 | 440 | TypeScript | 25d ago |
| 5 | agentfront/frontmcp TypeScript-first framework for the Model Context Protocol (MCP). You write clean, typed co… | 82.9 | 144 | TypeScript | 5d ago |
| 6 | korotovsky/slack-mcp-server The most powerful MCP Slack Server with no permission requirements, Apps support, GovSlack… | 82.7 | 1.5k | Go | 6d ago |
| 7 | snyk/agent-scan Security scanner for AI agents, MCP servers and agent skills. | 82.3 | 1.9k | Python | 1d ago |
| 8 | bitbonsai/mcpvault A lightweight Model Context Protocol (MCP) server for safe Obsidian vault access | 82.1 | 789 | Astro | 5d ago |
Choosing by use case
- Secrets management (Vault, AWS Secrets)
- Read secrets, rotate credentials, and manage secret versions — without hardcoding credentials.
- Identity & auth (OAuth, SAML, Okta)
- Integrate with identity providers for agent authentication and user context.
- Vulnerability scanning
- Run SAST/DAST scans, check for known CVEs, and surface security issues in automated agent loops.
- Compliance & audit
- Generate audit logs, check compliance posture, and track access patterns across agent operations.
Quick setup
Most MCP servers follow the same config pattern. Add this to your Claude Desktop, Cursor, or Windsurf MCP config file:
{
"mcpServers": {
"secrets": {
"command": "npx",
"args": ["-y", "@modelcontextprotocol/server-aws-secrets"],
"env": { "AWS_REGION": "us-east-1" }
}
}
}See the integrations page for platform-specific setup guides for Claude Code, Cursor, VS Code, Windsurf, and Cline.
Reading the AgentRank signals
Each tool in this guide is scored on five signals that predict long-term reliability:
| Signal | Weight | What it means |
|---|---|---|
| Stars | 15% | Raw popularity — how many developers have found and bookmarked this tool |
| Freshness | 25% | Days since last commit — tools with no recent commits decay hard after 90 days |
| Issue health | 25% | Ratio of closed to total issues — measures maintainer responsiveness |
| Contributors | 10% | More contributors = less bus-factor risk, broader review surface |
| Dependents | 25% | How many other repos depend on this — the strongest signal of real-world adoption |
Query this live from your editor: Install AgentRank in Cursor, VS Code, or Claude Code — your AI agent can query live rankings on demand.
Missing a tool? Submit it to the index — new tools are scored in the next nightly crawl.
Get the weekly AgentRank digest
Top movers, new tools, ecosystem insights — straight to your inbox.