← MCP Scorecard / github/github-mcp-server
APass

github/github-mcp-server

composite 95 / 100 · pinned commit 6787f085697c · ruleset pack-mcp-core@0.1.0 · 31,296/wk
Tool-description injection w20100
Credential / secret handling w20100
Network egress / SSRF w20100
Permission scope vs declared w2580
Supply-chain provenance w15100

Findings

Each finding names the rule it triggered, what that rule means, its CWE reference, and the line of code it points at. An observed code path, published as a flow, never as intent.

Medium  MCP-BIND-ALL-INTERFACES

binds all interfaces

internal/oauth/callback.go:48
Medium  MCP-CORS-WILDCARD

CORS allows any origin

pkg/http/middleware/cors.go:31

Embed this grade

MCP security: grade AMCP securityA
Grade A — Pass
[![MCP security: A](https://sentinel-engine-ggaj.onrender.com/registry/badge/github__github-mcp-server.svg)](https://sentinel-engine-ggaj.onrender.com/registry/github__github-mcp-server.html)

🔁 Verify it yourself: clone github/github-mcp-server at 6787f085697c and run the open scanner (anwen-labs/sentinel-mcp, ruleset pack-mcp-core@0.1.0). Same input → same grade, every time.