{"id":"riseandignite-mcp-shield","name":"mcp-shield","af_score":31.8,"security_score":38.0,"reliability_score":28.8,"what_it_does":"mcp-shield is a CLI security scanner that inspects installed MCP server configurations/tools and reports potential prompt-injection/tool-poisoning style vulnerabilities, suspected data-exfiltration channels, tool shadowing/behavior modification, and cross-origin escalation risks. It can optionally use an Anthropic Claude API key to enhance analysis.","best_when":"You are integrating new or updated MCP servers and want a fast static risk review before enabling them in an agent/LLM workflow.","avoid_when":"You need verifiable, deterministic guarantees of safety (scanner outputs are best-effort) or you cannot risk any external API calls (when using optional Claude-based analysis).","last_evaluated":"2026-03-30T13:27:07.366282+00:00","has_mcp":false,"has_api":false,"auth_methods":["Optional --claude-api-key (Anthropic Claude API key)"],"has_free_tier":false,"known_gotchas":["This is a local CLI scanner; there is no documented programmatic API for agents beyond invoking the command.","AI-enhanced mode depends on external Anthropic API credentials and may introduce non-determinism/cost.","Risk patterns rely on scanning tool descriptions/config; false positives/negatives are possible and not quantified in README."],"error_quality":0.0}