whatisgithub

What is mcp-audit?

adudley78/mcp-audit — explained in plain English

Analysis updated 2026-05-18

2PythonAudience · developerComplexity · 3/5LicenseSetup · easy

In one sentence

A free command-line scanner that checks your AI coding tools' MCP server connections for leaked credentials, tampering, and security risks.

Mindmap

mindmap
  root((mcp-audit))
    What it does
      Scans MCP configs
      Finds leaked credentials
      Detects tool poisoning
    Tech stack
      Python CLI
      MCP protocol
    Use cases
      Credential exposure checks
      Cross-server risk detection
      Security report export
    Audience
      Developers
      Security teams
    Setup
      pip install
      Runs fully offline

Code map

Detail Auto

An interactive map of this repo's files and how they connect — its source is parsed live in your browser. Click Visualize to build it.

filefunction / class

What do people build with it?

USE CASE 1

Scan your Claude Desktop, Cursor, or VS Code MCP configs for leaked credentials.

USE CASE 2

Detect malicious or tampered MCP servers before they compromise your AI agent.

USE CASE 3

Find dangerous combinations of MCP servers, like file-read paired with network access.

USE CASE 4

Generate a security report in SARIF or JSON for GitHub's security tab or a SIEM.

What is it built with?

PythonCLIMCP

How does it compare?

adudley78/mcp-audit0-bingwu-0/live-interpreter0xkaz/llm-governance-dashboard
Stars222
LanguagePythonPythonPython
Setup difficultyeasymoderatehard
Complexity3/52/54/5
Audiencedevelopergeneralops devops

Figures from each repo's GitHub metadata at analysis time.

How do you get it running?

Difficulty · easy Time to first run · 5min

Install with pip, then run a single command, live server inspection and signature verification need optional extras.

Use freely for any purpose, including commercial use, as long as you keep the copyright notice and state changes made.

So what is it?

MCP, short for Model Context Protocol, is the system that lets AI coding assistants connect to external tools, files, APIs, and databases. When something is misconfigured or malicious in that connection layer, the AI agent can quietly leak credentials or behave in ways the developer never intended, without anything showing up in the interface. mcp-audit is a Python command-line tool that scans local MCP configuration files for these problems before they cause harm. The scanner automatically finds MCP configuration files across eight AI coding clients, including Claude Desktop, Cursor, VS Code, Windsurf, Claude Code, and GitHub Copilot CLI. It then checks those configurations for a range of security issues: tool poisoning, where a server tries to manipulate AI behavior through hidden instructions, exposed credentials for services like AWS, GitHub, OpenAI, Anthropic, Stripe, and Slack, insecure transport settings such as unencrypted connections or elevated privileges, and supply chain risks like typosquatted package names or packages whose contents changed since they were last reviewed. It can also connect to running servers directly to inspect what an AI agent actually sees at runtime, and it keeps a history of tool descriptions so it can flag a legitimate server that later swaps in different behavior. Beyond checking one server at a time, it detects dangerous combinations across multiple servers, for example a server with file-read access paired with one that can send network requests, and it can suggest the smallest set of servers to remove to break every risky path. An interactive visual dashboard lets a user explore these attack paths in a browser. Results can be exported in several formats, including plain terminal output, JSON, SARIF for GitHub's security tab, and a self-contained HTML report, and it can feed results into enterprise vulnerability management systems. The tool runs entirely offline by default, collects no telemetry, and every feature is available for free with no paid tier. It is installed with pip and released under the Apache 2.0 license. The full README is longer than what was shown.

Copy-paste prompts

Prompt 1
Install mcp-audit-scanner and run mcp-audit check to give me a one-command security verdict.
Prompt 2
Help me interpret the results of mcp-audit scan --connect on my running MCP servers.
Prompt 3
Explain what tool poisoning and toxic cross-server flows mean in the context of this scanner.
Prompt 4
Show me how to open the interactive attack graph dashboard with mcp-audit dashboard.

Frequently asked questions

What is mcp-audit?

A free command-line scanner that checks your AI coding tools' MCP server connections for leaked credentials, tampering, and security risks.

What language is mcp-audit written in?

Mainly Python. The stack also includes Python, CLI, MCP.

What license does mcp-audit use?

Use freely for any purpose, including commercial use, as long as you keep the copyright notice and state changes made.

How hard is mcp-audit to set up?

Setup difficulty is rated easy, with roughly 5min to a first successful run.

Who is mcp-audit for?

Mainly developer.

Open on GitHub → Ask about another repo

This repo across BitVibe Labs

Verify against the repo before relying on details.