Is the MCP-Trust-Kit MCP server actively maintained?

The MCP-Trust-Kit MCP server was last committed today and has 2 contributors. Issue health: 0% of issues resolved. AgentRank freshness score reflects real-time maintenance activity.

MCP-Trust-Kit MCP Server

Name: aak204/MCP-Trust-Kit
Rating: 3.2 (1 reviews)
Author: aak204

aak204/MCP-Trust-Kit

Score: 54.3 Rank #1719 MCP Server

Are you the maintainer of aak204/MCP-Trust-Kit? Claim this listing →

Deterministic CI scanner and surface-risk scoring for MCP (Model Context Protocol) servers.

Add AgentRank to Claude Code Discover and compare tools like aak204/MCP-Trust-Kit — your AI finds the right one automatically

Get API Access →

claude mcp add agentrank -- npx -y agentrank-mcp-server

Overview

aak204/MCP-Trust-Kit is a Python MCP server licensed under Apache-2.0. Deterministic CI scanner and surface-risk scoring for MCP (Model Context Protocol) servers. Topics: agentic-ai, ci-cd, devsecops, llm-agents, mcp, model-context-protocol, python, security, static-analysis, trust-score.

Ranked #1719 out of 28002 indexed tools.

In the top 7% of all indexed tools.

Actively maintained with commits in the last week.

Ecosystem

Python Apache-2.0

agentic-aici-cddevsecopsllm-agentsmcpmodel-context-protocolpythonsecuritystatic-analysistrust-score

Score Breakdown

Stars 15% 93

93 stars → early stage

Freshness 25% today

Last commit today → actively maintained

Issue Health 25% 0%

0/1 issues closed → many open issues

Contributors 10% 2

2 contributors → solo project

Dependents 25% 0

No dependents → no downstream usage

npm Downloads N/A

PyPI Downloads N/A

Forks 1

Description Good

License Apache-2.0

Weights: Freshness 25% · Issue Health 25% · Dependents 25% · Stars 15% · Contributors 10% · How we score →

How to Improve

Description low impact

Expand your description to 150+ characters for better discoverability

Issue Health high impact

You have 1 open vs 0 closed issues — triaging stale issues improves health

Dependents medium impact

No downstream dependents detected yet — adoption by other projects is the strongest trust signal

Badge all embed codes →

Markdown

[![AgentRank](https://agentrank-ai.com/api/badge/tool/aak204--MCP-Trust-Kit)](https://agentrank-ai.com/tool/aak204--MCP-Trust-Kit/?utm_source=badge&utm_medium=readme&utm_campaign=agentrank_badge)

HTML

<a href="https://agentrank-ai.com/tool/aak204--MCP-Trust-Kit/?utm_source=badge&utm_medium=readme&utm_campaign=agentrank_badge"><img src="https://agentrank-ai.com/api/badge/tool/aak204--MCP-Trust-Kit" alt="AgentRank"></a>

Embed Widget docs →

HTML

<script src="https://agentrank-ai.com/embed.js" data-tool="aak204/MCP-Trust-Kit"></script>

Details

Stars: 93
Forks: 1
Open Issues: 1
Closed Issues: 0
Contributors: 2
Dependents: —
Language: Python
License: Apache-2.0
Last Commit: today

Matched Queries

"model context protocol""model-context-protocol"

From the README

# MCP Trust Kit

**Deterministic surface-risk scoring for MCP servers.**

`MCP Trust Kit` scans a local MCP server over `stdio`, discovers its tools, runs deterministic
checks for protocol and tool hygiene plus risky exposed capabilities, calculates a score from
`0..100`, and emits terminal, JSON, and SARIF output that fits cleanly into CI.

**MCP Trust Kit scores surface risk, not business intent.**

A low score means the exposed tool surface deserves review. It does not mean a server is malicious.
A high score means fewer deterministic findings. It does not mean a server is safe.

## Why

MCP servers expose tools to agents. That makes two questions worth automating before adoption:

- is the server metadata and schema surface clear enough to review?
- does the server expose capabilities with high blast radius?

`MCP Trust Kit` is intentionally narrow. It is not a security platform, a gateway, a hosted
service, or a certification authority. It is a deterministic scanner with stable ou

Read full README on GitHub →