From 3399c1588eca64e77ebd4d9bf8e0a4b421aa0811 Mon Sep 17 00:00:00 2001
From: Thomas Connally <tcconnally@users.noreply.github.com>
Date: Fri, 12 Jun 2026 19:09:51 -0500
Subject: [PATCH 1/2] =?UTF-8?q?fix:=20landing=20page=20numbers=20match=20r?=
 =?UTF-8?q?eality=20=E2=80=94=20105=20analyzers,=20594=20tests?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

The landing page undersold the test suite (365 claimed vs 594 actual
passing) and slightly oversold analyzer count (120 claimed vs 105 actual).
Updated to match the real codebase.
---
 index.html | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/index.html b/index.html
index ae507f3..3cc4904 100644
--- a/index.html
+++ b/index.html
@@ -514,19 +514,19 @@
 <!-- ============ HERO ============ -->
 <section class="hero">
   <div class="wrap">
-    <div class="hero-eyebrow">MCP Server Security — 365 tests passing</div>
-    <h1><em>120</em> Analyzers. <em>One</em> Command.</h1>
+    <div class="hero-eyebrow">MCP Server Security — 594 tests passing</div>
+    <h1><em>105</em> Analyzers. <em>One</em> Command.</h1>
     <p class="hero-lede">MCTS is a comprehensive security scanner for MCP servers. It detects tool poisoning, prompt injection, credential leaks, and behavioral regressions — then blocks vulnerable PRs automatically.</p>
 
     <div class="stat-grid">
       <div class="stat-card">
         <div class="skey">Analyzers</div>
-        <div class="sval">120<span class="unit">rules</span></div>
+        <div class="sval">105<span class="unit">rules</span></div>
         <div class="sdesc">Static analysis, fuzzing, behavioral evals across 12 categories of MCP security vulnerabilities.</div>
       </div>
       <div class="stat-card">
         <div class="skey">Test Suite</div>
-        <div class="sval">365<span class="unit">passing</span></div>
+        <div class="sval">594<span class="unit">passing</span></div>
         <div class="sdesc">Every analyzer verified by its own regression test. Self-verifying — tests its own detections.</div>
       </div>
       <div class="stat-card" style="border-color: rgba(245, 158, 11, 0.4);">

From 268e1fc96e50f007e3534581b0b69cedf2149be0 Mon Sep 17 00:00:00 2001
From: Thomas Connally <tcconnally@users.noreply.github.com>
Date: Fri, 12 Jun 2026 20:05:09 -0500
Subject: [PATCH 2/2] fix: replace aspirational registry scan data with real
 scan results
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Ran MCTS against 7 popular MCP servers. Real results:
- FastMCP: 191 findings, 71 HIGH+, 20 CRITICAL (worst)
- MCP Official Servers: 89 findings, 24 HIGH+, 4 CRITICAL
- Exa MCP: 24 findings, 7 HIGH+, 2 CRITICAL
- Playwright MCP, Figma MCP, Anthropic Tools, LangChain MCP: clean
- 3/7 (43%) have HIGH+ findings

Previous data (81%, 16 servers) was aspirational — replaced with
verified results from today's scans.
---
 index.html | 27 +++++++++------------------
 1 file changed, 9 insertions(+), 18 deletions(-)

diff --git a/index.html b/index.html
index 3cc4904..a03f55b 100644
--- a/index.html
+++ b/index.html
@@ -531,8 +531,8 @@ <h1><em>105</em> Analyzers. <em>One</em> Command.</h1>
       </div>
       <div class="stat-card" style="border-color: rgba(245, 158, 11, 0.4);">
         <div class="skey">Registry Scan</div>
-        <div class="sval">81<span class="unit">%</span></div>
-        <div class="sdesc"><strong>13 of 16 top MCP servers have ≥1 HIGH finding.</strong> Scanned: Playwright MCP, AWS MCP, n8n, FastMCP, Cline, and 11 more. <em>Real data, Jun 12 2026.</em></div>
+        <div class="sval">43<span class="unit">%</span></div>
+        <div class="sdesc"><strong>3 of 7 top MCP servers have ≥1 HIGH finding.</strong> Scanned: MCP Official Servers, FastMCP, Exa MCP, Playwright MCP, Anthropic Tools, and more. <em>Real data, Jun 12 2026.</em></div>
       </div>
       <div class="stat-card">
         <div class="skey">Block Mode</div>
@@ -798,28 +798,19 @@ <h2 class="sec-title">Registry <em>Scan</em> Results</h2>
           </tr>
         </thead>
         <tbody>
-          <tr><td style="color:var(--text);">Playwright MCP</td><td>9</td><td style="color:var(--warn);">6</td><td>0</td></tr>
-          <tr><td style="color:var(--text);">AWS MCP</td><td>1,353</td><td style="color:#ef4444;">450</td><td style="color:#ef4444;">108</td></tr>
-          <tr><td style="color:var(--text);">n8n</td><td>463</td><td style="color:var(--warn);">84</td><td>0</td></tr>
-          <tr><td style="color:var(--text);">FastMCP</td><td>310</td><td style="color:#ef4444;">102</td><td style="color:#ef4444;">20</td></tr>
-          <tr><td style="color:var(--text);">Cline</td><td>437</td><td style="color:var(--warn);">16</td><td>0</td></tr>
-          <tr><td style="color:var(--text);">Continue</td><td>490</td><td style="color:var(--warn);">11</td><td>0</td></tr>
-          <tr><td style="color:var(--text);">Stagehand</td><td>132</td><td style="color:var(--warn);">13</td><td>2</td></tr>
-          <tr><td style="color:var(--text);">MCP Official Servers</td><td>121</td><td style="color:var(--warn);">29</td><td>4</td></tr>
-          <tr><td style="color:var(--text);">Pydantic AI</td><td>207</td><td style="color:var(--warn);">10</td><td>2</td></tr>
-          <tr><td style="color:var(--text);">UI-TARS Desktop</td><td>378</td><td style="color:var(--warn);">17</td><td>3</td></tr>
-          <tr><td style="color:var(--text);">Exa MCP</td><td>29</td><td style="color:var(--warn);">10</td><td>2</td></tr>
-          <tr><td style="color:var(--text);">Serena</td><td>51</td><td style="color:var(--warn);">3</td><td>0</td></tr>
-          <tr><td style="color:var(--text);">Gen AI Toolbox</td><td>35</td><td style="color:var(--warn);">4</td><td>0</td></tr>
-          <tr><td style="color:var(--text);">Figma Context MCP</td><td>31</td><td>0</td><td>0</td></tr>
+          <tr><td style="color:var(--text);">FastMCP</td><td>191</td><td style="color:#ef4444;">71</td><td style="color:#ef4444;">20</td></tr>
+          <tr><td style="color:var(--text);">MCP Official Servers</td><td>89</td><td style="color:#ef4444;">24</td><td style="color:#ef4444;">4</td></tr>
+          <tr><td style="color:var(--text);">Exa MCP</td><td>24</td><td style="color:#ef4444;">7</td><td style="color:#ef4444;">2</td></tr>
+          <tr><td style="color:var(--text);">Playwright MCP</td><td>15</td><td>0</td><td>0</td></tr>
+          <tr><td style="color:var(--text);">Figma Context MCP</td><td>30</td><td>0</td><td>0</td></tr>
           <tr><td style="color:var(--text);">Anthropic Tools</td><td>1</td><td>0</td><td>0</td></tr>
-          <tr><td style="color:var(--text);">LangChain MCP</td><td>22</td><td>0</td><td>0</td></tr>
+          <tr><td style="color:var(--text);">LangChain MCP</td><td>1</td><td>0</td><td>0</td></tr>
         </tbody>
       </table>
     </div>
 
     <p style="font-size:12px; color:var(--text-muted); margin-top:12px;">
-      16 servers scanned Jun 12, 2026. 13/16 (81%) have ≥1 HIGH finding. 6/16 (38%) have ≥1 CRITICAL. 
+      7 servers scanned Jun 12, 2026. 3/7 (43%) have ≥1 HIGH finding. 3/7 (43%) have ≥1 CRITICAL. 
       Scan command: <code style="font-family:var(--mono);">mcts scan &lt;repo&gt;</code>
     </p>
   </div>