Skip to content

fix: real registry scan data replaces aspirational numbers #13

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
tcconnally merged 2 commits into from
Jun 13, 2026
+13 −22
Merged

fix: real registry scan data replaces aspirational numbers #13

Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
3399c15
fix: landing page numbers match reality — 105 analyzers, 594 tests
tcconnally Jun 13, 2026
268e1fc
fix: replace aspirational registry scan data with real scan results
tcconnally Jun 13, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
35 changes: 13 additions & 22 deletions index.html
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -514,25 +514,25 @@
<!-- ============ HERO ============ -->
<section class="hero">
<div class="wrap">
<div class="hero-eyebrow">MCP Server Security — 365 tests passing</div>
<h1><em>120</em> Analyzers. <em>One</em> Command.</h1>
<div class="hero-eyebrow">MCP Server Security — 594 tests passing</div>
<h1><em>105</em> Analyzers. <em>One</em> Command.</h1>
<p class="hero-lede">MCTS is a comprehensive security scanner for MCP servers. It detects tool poisoning, prompt injection, credential leaks, and behavioral regressions — then blocks vulnerable PRs automatically.</p>

<div class="stat-grid">
<div class="stat-card">
<div class="skey">Analyzers</div>
<div class="sval">120<span class="unit">rules</span></div>
<div class="sval">105<span class="unit">rules</span></div>
<div class="sdesc">Static analysis, fuzzing, behavioral evals across 12 categories of MCP security vulnerabilities.</div>
</div>
<div class="stat-card">
<div class="skey">Test Suite</div>
<div class="sval">365<span class="unit">passing</span></div>
<div class="sval">594<span class="unit">passing</span></div>
<div class="sdesc">Every analyzer verified by its own regression test. Self-verifying — tests its own detections.</div>
</div>
<div class="stat-card" style="border-color: rgba(245, 158, 11, 0.4);">
<div class="skey">Registry Scan</div>
<div class="sval">81<span class="unit">%</span></div>
<div class="sdesc"><strong>13 of 16 top MCP servers have ≥1 HIGH finding.</strong> Scanned: Playwright MCP, AWS MCP, n8n, FastMCP, Cline, and 11 more. <em>Real data, Jun 12 2026.</em></div>
<div class="sval">43<span class="unit">%</span></div>
<div class="sdesc"><strong>3 of 7 top MCP servers have ≥1 HIGH finding.</strong> Scanned: MCP Official Servers, FastMCP, Exa MCP, Playwright MCP, Anthropic Tools, and more. <em>Real data, Jun 12 2026.</em></div>
</div>
<div class="stat-card">
<div class="skey">Block Mode</div>
Expand Down Expand Up @@ -798,28 +798,19 @@ <h2 class="sec-title">Registry <em>Scan</em> Results</h2>
</tr>
</thead>
<tbody>
<tr><td style="color:var(--text);">Playwright MCP</td><td>9</td><td style="color:var(--warn);">6</td><td>0</td></tr>
<tr><td style="color:var(--text);">AWS MCP</td><td>1,353</td><td style="color:#ef4444;">450</td><td style="color:#ef4444;">108</td></tr>
<tr><td style="color:var(--text);">n8n</td><td>463</td><td style="color:var(--warn);">84</td><td>0</td></tr>
<tr><td style="color:var(--text);">FastMCP</td><td>310</td><td style="color:#ef4444;">102</td><td style="color:#ef4444;">20</td></tr>
<tr><td style="color:var(--text);">Cline</td><td>437</td><td style="color:var(--warn);">16</td><td>0</td></tr>
<tr><td style="color:var(--text);">Continue</td><td>490</td><td style="color:var(--warn);">11</td><td>0</td></tr>
<tr><td style="color:var(--text);">Stagehand</td><td>132</td><td style="color:var(--warn);">13</td><td>2</td></tr>
<tr><td style="color:var(--text);">MCP Official Servers</td><td>121</td><td style="color:var(--warn);">29</td><td>4</td></tr>
<tr><td style="color:var(--text);">Pydantic AI</td><td>207</td><td style="color:var(--warn);">10</td><td>2</td></tr>
<tr><td style="color:var(--text);">UI-TARS Desktop</td><td>378</td><td style="color:var(--warn);">17</td><td>3</td></tr>
<tr><td style="color:var(--text);">Exa MCP</td><td>29</td><td style="color:var(--warn);">10</td><td>2</td></tr>
<tr><td style="color:var(--text);">Serena</td><td>51</td><td style="color:var(--warn);">3</td><td>0</td></tr>
<tr><td style="color:var(--text);">Gen AI Toolbox</td><td>35</td><td style="color:var(--warn);">4</td><td>0</td></tr>
<tr><td style="color:var(--text);">Figma Context MCP</td><td>31</td><td>0</td><td>0</td></tr>
<tr><td style="color:var(--text);">FastMCP</td><td>191</td><td style="color:#ef4444;">71</td><td style="color:#ef4444;">20</td></tr>
<tr><td style="color:var(--text);">MCP Official Servers</td><td>89</td><td style="color:#ef4444;">24</td><td style="color:#ef4444;">4</td></tr>
<tr><td style="color:var(--text);">Exa MCP</td><td>24</td><td style="color:#ef4444;">7</td><td style="color:#ef4444;">2</td></tr>
<tr><td style="color:var(--text);">Playwright MCP</td><td>15</td><td>0</td><td>0</td></tr>
<tr><td style="color:var(--text);">Figma Context MCP</td><td>30</td><td>0</td><td>0</td></tr>
<tr><td style="color:var(--text);">Anthropic Tools</td><td>1</td><td>0</td><td>0</td></tr>
<tr><td style="color:var(--text);">LangChain MCP</td><td>22</td><td>0</td><td>0</td></tr>
<tr><td style="color:var(--text);">LangChain MCP</td><td>1</td><td>0</td><td>0</td></tr>
</tbody>
</table>
</div>

<p style="font-size:12px; color:var(--text-muted); margin-top:12px;">
16 servers scanned Jun 12, 2026. 13/16 (81%) have ≥1 HIGH finding. 6/16 (38%) have ≥1 CRITICAL.
7 servers scanned Jun 12, 2026. 3/7 (43%) have ≥1 HIGH finding. 3/7 (43%) have ≥1 CRITICAL.
Scan command: <code style="font-family:var(--mono);">mcts scan &lt;repo&gt;</code>
</p>
</div>
Expand Down
Loading