MCP Trust Index

19,000+ MCP servers exist across 17+ directories. Independent research shows 66% have security findings. Enterprises need a vetted shortlist — not another directory. We don't list first. We list last.

19,000+ MCP Servers Exist
66% Have Security Findings
29 We Recommend

The Problem with MCP Server Discovery

The Model Context Protocol ecosystem is growing at 873% year-over-year. There are 17+ registries and directories, each racing to index the most servers. But volume is not trust.

AgentSeal scanned 1,808 MCP servers and found 43% have shell injection vulnerabilities. A fake Postmark MCP server on npm exfiltrated API keys. 30 CVEs were disclosed in a single 60-day window. The OWASP Foundation published an MCP Top 10 security list.

The MCP Trust Index takes a different approach. We aggregate publicly verifiable trust signals — downloads, security audits, maintenance history, community health — into a transparent scoring model with a high bar. The crowd does the vetting. We do the curation.

Trust Tiers

Servers that pass our gate are scored and placed into tiers. Each listing includes a human-written assessment.

Enterprise Verified badge — three stars

Enterprise Verified

★★★
Score 80–100

Deploy with confidence. Battle-tested, well-maintained, broadly compatible. Suitable for production workloads at scale.

Recommended badge — two stars

Recommended

★★
Score 60–79

Strong track record with minor gaps. Suitable for most enterprise use cases. Review the noted caveats before deploying.

Emerging badge — one star

Emerging

Score 40–59

Passed all gates but still building track record. Monitor closely. Suitable for non-critical workloads or evaluation.

The Gate: Minimum Thresholds

A server must pass every gate below to be considered for the Index. Failing any single requirement is disqualifying — no exceptions, no overrides, no pay-to-bypass.

1 Maturity

New servers haven't survived enough real-world usage to trust. We wait for the signal.

6+ months since first publish 1,000+ weekly downloads 100+ GitHub stars

2 Security

One unpatched critical vulnerability is disqualifying. We check OSV, NVD, Snyk, Socket.dev, and AgentSeal.

Zero unpatched critical/high CVEs Zero AgentSeal critical findings Zero OWASP MCP Top 10 violations No supply chain incidents

3 Maintenance

Unmaintained servers are ticking time bombs. Active maintenance is non-negotiable.

Commit within 90 days No unaddressed critical issues 30+ days Responsible disclosure process

4 Identity & Transparency

Enterprises cannot deploy black boxes. Inspectable code, verified ownership, identifiable maintainer.

Open source Verified MCP Registry namespace Identifiable maintainer OSI-approved license

5 Interoperability

Enterprise environments use multiple AI clients. A server locked to a single client is a vendor trap.

Works with 2+ major MCP clients Current MCP spec version stdio or Streamable HTTP transport

Scoring Dimensions

Servers that pass the gate are scored across four dimensions (100 points total) and placed into trust tiers.

Adoption

0–25 points
  • Weekly downloads vs. category median
  • Growth trajectory
  • Dependent packages / integrations
  • Presence in official client docs

Security Track Record

0–25 points
  • Historical CVE count & time-to-patch
  • Third-party audit history
  • Dependency health
  • Auth model quality

Community Health

0–25 points
  • Contributor count & bus factor
  • Issue response time
  • Release cadence & changelog
  • Documentation quality

Enterprise Readiness

0–25 points
  • Configuration complexity
  • Error handling & logging
  • Client compatibility breadth
  • Official support channel

What We Don't Do

We don't list first

If a server launched last month, it's not on our list. We recommend at 6+ months. Being late is the product.

We don't list everything

19,000 servers exist. We recommend fewer than 200. Curation is exclusion.

We don't accept pay-for-placement

If a server is on our list, it earned it. If it's not, no amount of money changes that.

We don't compete with registries

The official MCP Registry, PulseMCP, and others index. We recommend. Different jobs.

Categories

The Index organizes servers by enterprise use case.

Database & DataPostgreSQL, MySQL, SQLite, Redis
File Systems & StorageS3, Google Drive, Dropbox
CommunicationGmail, Outlook, Slack, Calendar
Developer ToolsGit, GitHub, CI/CD, Docker
Search & KnowledgeWeb search, vector DBs, RAG
CRM & BusinessSalesforce, HubSpot, Stripe
MonitoringDatadog, Sentry, PagerDuty
Cloud InfrastructureAWS, GCP, Azure, Kubernetes
AI & MLModel APIs, embeddings, prompts
ProductivityNotion, Linear, Jira, Asana

The Index

MCP servers that have passed our gate and earned a trust tier. Scored monthly. Sorted by score.

All Database Developer Tools File Systems Search Productivity CRM/Business Cloud Monitoring AI/ML
Enterprise Verified

GitHub

GitHub / Microsoft · Official

Full GitHub API — repositories, issues, PRs, code search, Actions, secret scanning. 28K+ stars.

Developer Tools stdio + HTTP OAuth / PAT
docker run -i ghcr.io/github/github-mcp-server
GitHub
96
Enterprise Verified
★★★
Enterprise Verified

Playwright

Microsoft · Official

Browser automation via accessibility tree. Navigate, click, screenshot, scrape JS-rendered pages. 29K+ stars, most-used MCP server.

Searchstdio + HTTPNone
npx @playwright/mcp
GitHubnpm
95
Enterprise Verified
★★★
Enterprise Verified

Filesystem

Anthropic · Official Reference

Secure file operations with configurable access controls. Read, write, move, search within allowed directories. 137K weekly downloads.

File SystemsstdioSandboxed
npx -y @modelcontextprotocol/server-filesystem
GitHubnpm
92
Enterprise Verified
★★★
Enterprise Verified

Git

Anthropic · Official Reference

Local Git repository operations — status, diff, log, commit, branch, checkout. 1.2M monthly downloads.

Developer ToolsstdioNone
uvx mcp-server-git
GitHubPyPI
90
Enterprise Verified
★★★
Enterprise Verified

Atlassian (Jira + Confluence)

Community (sooperset) · 118 contributors

72 tools for Jira and Confluence — issues, pages, search, sprints. Cloud + Server/DC. 793K monthly downloads.

ProductivitystdioAPI Token / OAuth
uvx mcp-atlassian
GitHubPyPI
89
Enterprise Verified
★★★
Enterprise Verified

Stripe

Stripe · Official

Payments, customers, subscriptions, invoices, refunds, webhooks. 25 tools across 13 categories. 29K weekly downloads.

CRM/Businessstdio + HTTPAPI Key / OAuth
npx -y @stripe/mcp
GitHubnpm
88
Enterprise Verified
★★★
Enterprise Verified

Notion

Notion · Official

Full Notion API — create, read, update, search pages, databases, and comments via 22 tools. 48K weekly downloads.

Productivitystdio + HTTPAPI Key / OAuth
npx -y @notionhq/notion-mcp-server
GitHubnpm
87
Enterprise Verified
★★★
Enterprise Verified

MongoDB

MongoDB Inc. · Official

Database operations and Atlas cluster management via natural language. 908K monthly downloads.

Databasestdio + HTTPConnection String
npx mongodb-mcp-server
GitHubnpm
86
Enterprise Verified
★★★
Enterprise Verified

AWS Suite

AWS · Official

60+ MCP servers for AWS — CDK, DynamoDB, EKS, Lambda, CloudFormation, S3, CloudWatch, docs. 8.6K stars, 865K monthly downloads.

CloudstdioIAM
uvx awslabs.aws-documentation-mcp-server@latest
GitHub
85
Enterprise Verified
★★★
Enterprise Verified

Supabase

Supabase · Official

Full Supabase access — databases, auth, storage, edge functions, management API, migrations. 46K weekly downloads.

DatabasestdioAccess Token
npx -y @supabase/mcp-server-supabase
GitHubnpm
84
Enterprise Verified
★★★
Recommended

Postgres MCP Pro

Crystal DBA

Read/write PostgreSQL with AI-assisted index tuning and performance analysis. Replaces deprecated Anthropic Postgres ref server.

Databasestdio + SSEConnection String
uvx postgres-mcp
GitHubPyPI
78
Recommended
★★
Recommended

Exa Search

Exa · Official

AI-optimized semantic web search and crawl. Real-time results, structured data, LinkedIn/Twitter integration. 4.1K stars.

Searchstdio + HTTPAPI Key
npx -y exa-mcp-server
GitHubnpm
77
Recommended
★★
Recommended

Firecrawl

Firecrawl · Official

Full-stack web scraping — JS-rendered pages, batch scraping, structured extraction, site mapping. 5.9K stars.

Searchstdio + HTTPAPI Key
npx firecrawl-mcp
GitHubnpm
75
Recommended
★★
Recommended

Grafana

Grafana Labs · Official

Dashboards, datasources (Prometheus, Loki, ClickHouse), alerts, incidents, and on-call schedules. 2.7K stars.

MonitoringstdioService Account Token
uvx mcp-grafana
GitHubPyPI
74
Recommended
★★
Recommended

Sentry

Sentry · Official

Errors, issues, releases, performance data, source maps. 30K weekly downloads.

Monitoringstdio + HTTPAuth Token
npx -y @sentry/mcp-server
GitHubnpm
72
Recommended
★★
Recommended

Cloudflare

Cloudflare · Official

16 MCP servers — Workers, KV, D1, R2, DNS, AI Gateway, Radar, Browser Rendering. 3.6K stars.

Cloudstdio + HTTPAPI Token
npx @cloudflare/mcp-server-cloudflare
GitHubnpm
71
Recommended
★★
Recommended

GitLab

Community (zereight)

GitLab API — repos, issues, merge requests, CI/CD, branches, labels. 1.3K stars. Highest-adoption GitLab MCP.

Developer Toolsstdio + HTTPPAT / OAuth
npx @zereight/mcp-gitlab
GitHubnpm
70
Recommended
★★
Recommended

Terraform

HashiCorp · Official

Terraform Registry API, HCP workspace management, private registry, provider/module discovery for IaC. 1.3K stars.

Cloudstdio + HTTPTFE Token
docker run hashicorp/terraform-mcp-server
GitHub
69
Recommended
★★
Recommended

Brave Search

Brave · Official

Web, image, video, news, and local search via Brave Search API. Privacy-first, advanced operators.

SearchstdioAPI Key
npx @brave/brave-search-mcp-server
GitHubnpm
68
Recommended
★★
Recommended

Shopify

Shopify · Official

Shopify dev tooling — build/debug apps, access Storefront/Admin API docs. 34K weekly downloads. Repo is private.

CRM/BusinessstdioPartner Credentials
npx @shopify/dev-mcp@latest
Docsnpm
67
Recommended
★★
Recommended

ClickHouse

ClickHouse Inc. · Official

SQL query execution, table management, and database inspection on ClickHouse analytics databases. 155K monthly downloads.

Databasestdio + HTTPBearer Token
uvx mcp-clickhouse
GitHubPyPI
66
Recommended
★★
Recommended

Qdrant

Qdrant · Official

Semantic memory via Qdrant vector search with embedding support. Store and retrieve information. 1.3K stars, 90K monthly downloads.

AI/MLstdio + HTTPAPI Key
uvx mcp-server-qdrant
GitHubPyPI
65
Recommended
★★
Recommended

Memory

Anthropic · Official Reference

Knowledge graph-based persistent memory for AI assistants. Create entities, relations, and observations. 72K weekly downloads.

AI/MLstdioNone
npx -y @modelcontextprotocol/server-memory
GitHubnpm
64
Recommended
★★
Recommended

Fetch

Anthropic · Official Reference

Fetch web pages and convert to markdown for LLM consumption. Respects robots.txt.

SearchstdioNone
uvx mcp-server-fetch
GitHubPyPI
63
Recommended
★★
Recommended

Puppeteer

Anthropic · Official Reference

Browser automation and web scraping. Navigate, screenshot, click, fill forms, execute JavaScript. 27K weekly downloads.

Developer ToolsstdioNone
npx -y @modelcontextprotocol/server-puppeteer
GitHubnpm
62
Recommended
★★
Emerging

Redis

Redis Inc. · Official

Hashes, lists, sets, streams, pub/sub, vector search. Azure EntraID support.

DatabasestdioPassword / EntraID
uvx redis-mcp-server
GitHubPyPI
52
Emerging
Emerging

Neon

Neon · Official

Serverless Postgres — create/manage databases, branches, run SQL via Neon Management API. 20+ tools.

DatabaseHTTPAPI Key / OAuth
npx @neondatabase/mcp-server-neon
GitHubnpm
50
Emerging
Emerging

JetBrains

JetBrains · Official

Proxy routing MCP requests into IntelliJ, PyCharm, WebStorm, Android Studio — IDE actions, code nav, run configs.

Developer ToolsstdioNone
npx @jetbrains/mcp-proxy
GitHubnpm
48
Emerging
Emerging

Kubernetes

Red Hat / Community

Native Go MCP server communicating directly with the Kubernetes API. Manage clusters, pods, deployments, services. 1.3K stars.

Cloudstdio + HTTPkubeconfig / OIDC
npx kubernetes-mcp-server
GitHub
46
Emerging

About the MCP Trust Index

The MCP Trust Index is a curated, enterprise-grade list of Model Context Protocol (MCP) servers published by StaaS Fund, a venture capital fund investing in agentic AI infrastructure led by Peter Saddington. The Index evaluates MCP servers across maturity, security, maintenance, identity, and interoperability using publicly verifiable trust signals including npm/PyPI download counts, GitHub activity, OSV and NVD vulnerability databases, AgentSeal security scans, and OWASP MCP Top 10 compliance. Servers are scored on a 100-point scale across four dimensions — adoption, security track record, community health, and enterprise readiness — and assigned to Enterprise Verified, Recommended, or Emerging tiers. The methodology is transparent and no listings are paid. Updated monthly at staas.fund/mcp.

Know an MCP Server That Should Be Here?

We evaluate new servers monthly. If you've built or used an MCP server that meets our gate criteria, let us know.

Submit a Server