
MCPShield CLI
Scan MCP servers and GitHub repositories for security vulnerabilities.
Powered by MCPShield โ the MCP security scanner with 59+ detection rules covering the OWASP MCP Top 10.
Exit Codes
0โ Scan completed, no critical findings1โ Error (invalid key, rate limit, scan failure)2โ Scan completed with critical findings
Environment Variables
MCPSHIELD_API_KEYโ API key (alternative tomcpshield auth)MCPSHIELD_API_URLโ Custom API endpoint (for self-hosted)
Copy & paste โ that's it
npm install -g mcpshieldBefore it works, you'll need: MCPSHIELD_API_KEY
Install
npm install -g mcpshieldSetup
Get a free API key at mcpshield.co/settings, then:
mcpshield auth mcp_sk_your_key_hereUsage
# Scan an HTTP MCP server
mcpshield scan --url https://mcp-server.example.com/mcp
# Scan a GitHub repository
mcpshield scan --github https://github.com/user/repo
# JSON output (for CI/CD)
mcpshield scan --url https://mcp-server.example.com/mcp --json
# Filter by severity
mcpshield scan --url https://mcp-server.example.com/mcp --severity highNo common issues documented yet. If you hit a problem, the repository's GitHub Issues page is the best place to look.
License
MIT