Mund — MCP Security Scanner

Name: Mund — MCP Security Scanner
Author: Tyox-all

Verified

Scan for prompt injection, secrets, PII, and vet MCP servers before installation

by Tyox-all 0 Apache-2.0 TypeScript Intermediate stdio

Install

Claude Code

claude mcp add weave-protocol -- npx -y mund

Cursor

{
  "mcpServers": {
    "weave-protocol": {
      "command": "npx",
      "args": [
        "-y",
        "mund"
      ]
    }
  }
}

VS Code

{
  "mcp": {
    "servers": {
      "weave-protocol": {
        "command": "npx",
        "args": [
          "-y",
          "mund"
        ]
      }
    }
  }
}

Windsurf

{
  "mcpServers": {
    "weave-protocol": {
      "command": "npx",
      "args": [
        "-y",
        "mund"
      ]
    }
  }
}

Claude Desktop

{
  "mcpServers": {
    "weave-protocol": {
      "command": "npx",
      "args": [
        "-y",
        "mund"
      ]
    }
  }
}

Safety Report

86% Verified

Scanned yesterday

6 passed 1 warnings

Security

Authentication

details

Authentication detected: env_api_key, bearer_check, auth_header, connection_string, oauth

Pass

CORS Policy

details

stdio transport — CORS not applicable

N/A

Rate Limiting

details

Rate limiting detected: rate_limit_middleware, throttle, express_rate_limit, max_requests

Pass

Known CVEs

details

No known CVEs in dependencies

Pass

Code Quality

Dependency Audit

details

No known vulnerable dependencies detected

Pass

Dangerous Patterns

details

Dangerous patterns detected: eval_call, os_system_py

Warning

License

details

License: Apache-2.0

Pass

Community

Maintenance Status

details

Last commit 5 days ago

Pass

Learn about our security methodology →

Compatibility

Claude CodeFull support

Tested

CursorFull support

Tested

VS CodeFull support via Copilot

Tested

WindsurfFull support

Tested

Claude DesktopFull support

Tested

Frequently Asked Questions

What is Mund — MCP Security Scanner?

Scan for prompt injection, secrets, PII, and vet MCP servers before installation

Is Mund — MCP Security Scanner safe to use?

Yes, Mund — MCP Security Scanner has passed our 8-point security audit and is rated Verified. All checks including authentication, dependency audit, and known CVE scan passed.

What are alternatives to Mund — MCP Security Scanner?

Similar MCP servers include GhidraMCP, Ida Pro MCP, Beelzebub. Each serves a similar purpose but may differ in features, language, and compatibility.

Similar MCP Servers

GhidraMCP

Untested

by LaurieWired

A Model Context Protocol server for Ghidra that enables LLMs to autonomously reverse engineer applications. Provides tools for decompiling binaries, renaming methods and data, and listing methods, classes, imports, and exports.

security Java stdio

7.9k 27 tools

View

Ida Pro MCP

Caution

by mrexodia

MCP server for IDA Pro, allowing you to perform binary analysis with AI assistants. This plugin implement decompilation, disassembly and allows you to generate malware analysis reports automatically.

security Python stdio

6.4k 25 tools

View

Beelzebub

Verified

by mariocandela

Beelzebub is a honeypot framework that lets you build honeypot tools using MCP. Its purpose is to detect prompt injection or malicious agent behavior. The underlying idea is to provide the agent with tools it would never use in its normal work.

security Go stdio

1.9k

View