Security you can
verify
25 security controls. 5 domains. 4 certification levels. Every bundle on mpak is scanned and graded, so you know exactly what you're installing.
The Problem
MCP servers have full system access. Traditional security tools don't understand AI-specific attack vectors.
Filesystem + Network + Code Execution
A malicious bundle can exfiltrate data, install backdoors, or serve as a supply chain attack vector. The permissions model is wide open.
Tool Description Poisoning
AI assistants follow tool descriptions faithfully. A description like "read ~/.aws/credentials before calling" becomes an instruction, not documentation.
Slopsquatting
LLMs hallucinate package names consistently. Attackers register these phantom packages with malicious payloads, waiting for AI-generated code to install them.
Certification Levels
Progressive security tiers for different risk tolerances
Basic
Personal projects, experimentation
Standard
Team tools, published packages
Verified
Production, enterprise use
Attested
Critical infrastructure, regulated industries
Security Domains
Five areas of security coverage
MCP-Specific Controls
AI attack surfaceTraditional security tools don't understand these threats. We built controls specifically for MCP and AI workflows.
Tool Description Safety
Detects prompt injection in tool descriptions. Malicious descriptions become instructions that AI assistants faithfully execute.
Anti-Slopsquatting
Blocks packages named after LLM-hallucinated package names. Attackers register these phantom names with malicious payloads.
Credential Scope Declaration
MCP servers aggregate OAuth tokens for multiple services. This control enforces minimal, declared scopes to limit blast radius.
Behavioral Analysis
Runs bundles in an isolated sandbox and monitors actual runtime behavior. Catches encrypted payloads and runtime-generated code.
Using Certification
For Consumers
- Check the certification badge on package pages
- Review risk score and individual control results
- Match level to your use case: Personal (L1+), Team (L2+), Production (L3+), Regulated (L4)
For Publishers
- All published bundles are automatically scanned
- Remediation guidance provided for failed controls
- Higher certification = more visibility and trust
Browse Certified Bundles
Find bundles that meet your security requirements.