Sponsored by Deepsite.site

MCP.so

Project Shield

Created By
ShovelMaker91a month ago
Security scanner for MCP servers and AI-generated code. Detects leaked API keys, PII, prompt injection, and MCP misconfigs. Gives A-F security grades with fix-it guides. One command: npx project-shield scan .
# security
# mcp
OverviewContentToolsComments
Content

Your MCP server has vulnerabilities.
Find them in 2 minutes.

Multi-layer security scans for AI-generated code and MCP servers. Detects leaked API keys, PII, prompt injection, and insecure configs.

Pro doesn't sell scans — it sells client-ready proof. PDF reports, Evidence Packs, verified badges.

View on GitHub 
<!-- Terminal Demo -->
<div class="terminal" style="margin-top:60px">
  <div class="terminal-header">
    <div class="terminal-dot red"></div>
    <div class="terminal-dot yellow"></div>
    <div class="terminal-dot green"></div>
    <span class="terminal-title">terminal</span>
  </div>
  <div class="terminal-body">

$ npx project-shield scan ./my-mcp-server

🔍 Scanning 47 files...

✗ CRITICAL F001 API Key Exposed src/config.ts:12 AKIA5EXAMPLE... Detection: regex + entropy(4.8) + context("aws_key")

✗ CRITICAL F003 Prompt Injection tools/search.ts:45 "ignore previous instructions..." Detection: keyword + structure

⚠ WARNING F002 MCP No Auth mcp.json:1 No authentication configured

━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━ Score: 12/100 (F) | Status: 🔒 LOCKED 2 Critical · 1 Warning · 0 Info Fix-it guide: 3 actionable fixes available Badge: Locked — resolve critical issues first

The Problem

MCP is the new attack surface

AI-generated code ships fast — but security doesn't keep up. MCP servers introduce an entirely new class of vulnerabilities.

7.2%
of MCP servers have exploitable vulnerabilities
arXiv:2506.13538 — 1,899 servers analyzed
5.5%
contain tool poisoning patterns
arXiv:2506.13538 — hidden instructions in metadata
66%
have code smells
arXiv:2506.13538 — insecure defaults, missing auth
~45%
of AI-generated code has security flaws
Veracode 2025 State of Software Security
How It Works

Multi-Layer Detection

One layer misses. The next catches. Each vulnerability goes through 2–3 independent detection methods.

1

Pattern Matching

Known vulnerability signatures — regex patterns for API keys (AWS, Stripe, OpenAI…), PII formats, injection keywords, and MCP misconfigurations.

2

Entropy & Checksum

Mathematical verification — Shannon entropy analysis catches unknown key formats. Luhn algorithm validates card numbers. Checksum verifies national IDs.

3

Context Analysis

Smart filtering — variable names, file paths, and surrounding code determine if a match is a real threat or a false positive (test data, examples, comments).

3 layers for secrets · 2 layers for PII · 2 layers for injection · 5 checks for MCP

Lock System

Critical vulnerability? Badge locked.

No false sense of security. If critical issues exist, your Scan Badge won't be issued until they're fixed. Fix-it guide included.

A
Excellent ✅
All checks passed
B–C
Pass ✅
Clean Scan Badge
D–E
Warning ⚠️
Badge with warning tag
F
Locked 🔒
Fix required to unlock
Evidence & Trust

Not just a scan. A verifiable proof.

Every scan produces tamper-proof evidence. Clients can independently verify your security posture.

🔐

Unique Badge ID

Every Scan Badge has a UUID linked to a verification page. Anyone can check if the badge is authentic.

🔏

Hash-Sealed Results

Scan results are sealed with SHA-256 hash. Any modification is instantly detectable.

📋

Evidence Pack

Full scan metadata — timestamp, ruleset version, file count, findings summary — bundled in a verifiable package.

🛡️

Ruleset Integrity

Expert-curated rules with SHA-256 verification. Tampered rulesets are rejected before scanning begins.

Scan → Evidence → Trust

Comparison

Why not just ask AI to check your security?

AI (ChatGPT / Claude)Project Shield
MCP-specific rulesGeneric adviceResearch-based rules
Detection layersSingle passMulti-layer (2–3×)
Verifiable outputChat responseSealed Evidence Pack
False positive mgmtNoneshield-ignore + tuned thresholds
Client proofScreenshot?Verified Scan Badge + URL
CI/CD Integration

Block vulnerabilities before they ship.

Add one step to your GitHub Actions. Shield fails the build if critical issues are found.

.github/workflows/shield.yml
name: Security Scan on: [push, pull_request] jobs: shield: runs-on: ubuntu-latest steps: - uses: actions/checkout@v4 - name: Run Shield run: npx project-shield scan . --ci

Shield exits with code 1 on critical findings — your CI pipeline stops automatically.

Pricing

Start free. Scale when ready.

No credit card required. Scan your project today.

Free
$0
For individual developers
  • 5 scans / month
  • Terminal report
  • Watermarked Scan Badge
  • Lock system applied
  • Fix-it guide (summary)
Pro
$29/mo
For professional developers
  • 50 scans / month
  • Clean Scan Badge + verify page
  • PDF report
  • Evidence Pack (JSON + PDF)
  • Full Fix-it guide with code snippets
  • Scan history
Buy Pro
Team
$99/mo
For teams up to 5
  • Unlimited scans
  • 5 seats
  • Dashboard
  • Slack integration
  • CI/CD gate
Enterprise
$299+/mo
Custom solutions
  • Unlimited everything
  • SSO / RBAC
  • Audit trail
  • SLA guarantee
  • Compliance mapping

Free to scan. Locked until safe.
Verified when ready.

Run your first scan in under a minute. No signup required.

npx project-shield scan .

Click to copy

Server Config

{
  "mcpServers": {
    "project-shield": {
      "command": "npx",
      "args": [
        "-y",
        "project-shield",
        "scan",
        "."
      ]
    }
  }
}
Recommend Servers
TraeBuild with Free GPT-4.1 & Claude 3.7. Fully MCP-Ready.
Y GuiA web-based graphical interface for AI chat interactions with support for multiple AI models and MCP (Model Context Protocol) servers.
MiniMax MCPOfficial MiniMax Model Context Protocol (MCP) server that enables interaction with powerful Text to Speech, image generation and video generation APIs.
BlenderBlenderMCP connects Blender to Claude AI through the Model Context Protocol (MCP), allowing Claude to directly interact with and control Blender. This integration enables prompt assisted 3D modeling, scene creation, and manipulation.
Tavily Mcp
MCP AdvisorMCP Advisor & Installation - Use the right MCP server for your needs
Playwright McpPlaywright MCP server
Visual Studio Code - Open Source ("Code - OSS")Visual Studio Code
Serper MCP ServerA Serper MCP Server
EdgeOne Pages MCPAn MCP service designed for deploying HTML content to EdgeOne Pages and obtaining an accessible public URL.
Baidu Map百度地图核心API现已全面兼容MCP协议,是国内首家兼容MCP协议的地图服务商。
CursorThe AI Code Editor
AiimagemultistyleA Model Context Protocol (MCP) server for image generation and manipulation using fal.ai's Stable Diffusion model.
WindsurfThe new purpose-built IDE to harness magic
Amap Maps高德地图官方 MCP Server
Jina AI MCP ToolsA Model Context Protocol (MCP) server that integrates with Jina AI Search Foundation APIs.
Howtocook Mcp基于Anduin2017 / HowToCook (程序员在家做饭指南)的mcp server,帮你推荐菜谱、规划膳食,解决“今天吃什么“的世纪难题; Based on Anduin2017/HowToCook (Programmer's Guide to Cooking at Home), MCP Server helps you recommend recipes, plan meals, and solve the century old problem of "what to eat today"
DeepChatYour AI Partner on Desktop
Zhipu Web SearchZhipu Web Search MCP Server is a search engine specifically designed for large models. It integrates four search engines, allowing users to flexibly compare and switch between them. Building upon the web crawling and ranking capabilities of traditional search engines, it enhances intent recognition capabilities, returning results more suitable for large model processing (such as webpage titles, URLs, summaries, site names, site icons, etc.). This helps AI applications achieve "dynamic knowledge acquisition" and "precise scenario adaptation" capabilities.
ChatWiseThe second fastest AI chatbot™
RedisA Model Context Protocol server that provides access to Redis databases. This server enables LLMs to interact with Redis key-value stores through a set of standardized tools.