MCP compliance catalog

Every MCP tool in the SCOPE compliance index, grouped by server — risk posture, regulatory exposure, and the tools that warrant tighter governance.
80MCP servers
1695tools
Reset 80 of 80 servers
Vercel
20 tools · footprint 41
2 critical 3 high 2 med 13 low COSOSOX
Zapier
14 tools · footprint 39
1 critical 3 high 3 med 7 low COSOPCI+1 more
GitHub
83 tools · footprint 38
1 high 20 med 62 low COSOSOX
Snowflake
6 tools · footprint 37
2 critical 3 high 1 med COSOSOX
Calendly
35 tools · footprint 34
2 high 13 med 20 low
Smartsheet
42 tools · footprint 34
2 high 9 med 31 low COSOSOX
Ramp
17 tools · footprint 33
5 high 5 med 7 low COSOGLBA+2 more
Attio
37 tools · footprint 32
4 high 14 med 19 low
Egnyte
21 tools · footprint 31
3 high 9 med 9 low
Stytch
7 tools · footprint 31
1 critical 2 high 2 med 2 low
Wix
16 tools · footprint 29
1 critical 1 high 1 med 13 low COSOPCI+1 more
WordPress.com
19 tools · footprint 28
3 high 6 med 10 low COSOSOX
Oracle NetSuite
11 tools · footprint 27
3 high 3 med 5 low COSOSOX
Atlassian Rovo
54 tools · footprint 24
13 med 41 low
ZoomInfo
15 tools · footprint 24
5 high 4 med 6 low
Braze
40 tools · footprint 23
1 high 5 med 34 low COSOSOX
‹ PrevPage 2 of 5Next ›
GitHubDocs ↗
1 high 20 med 62 low · 83 tools · 1 SoD-flagged
regimes APPICCPACOSOGDPRISO_27001LGPDNIST_CSFPIPEDAPIPLPOPIASOC2SOXUK_GDPR

Tools needing tighter control (1 of 83)

github.pull_request_review_write high conf highhuman approval
Submits a pull request review (approve, request changes, comment); the same principal can author and approve a PR, the textbook segregation-of-duties violation.
All other tools (82)
github.actions_get low conf highallow
Reads metadata for a workflow, workflow run, or job.
github.actions_list low conf highallow
Lists workflows, workflow runs, or jobs in a repository.
github.actions_run_trigger medium conf highaudit
Triggers a workflow_dispatch or rerun event; executes CI with configured secrets and can affect deployment pipelines.
github.add_comment_to_pending_review low conf highallow
Adds a draft comment to an in-progress pull request review.
github.add_issue_comment low conf highallow
Posts a comment on an issue; visible to repository collaborators.
github.add_reply_to_pull_request_comment low conf highallow
Replies to an existing pull request review comment.
github.assign_copilot_to_issue low conf highallow
Assigns the GitHub Copilot coding agent to an issue.
github.create_branch medium conf highaudit
Creates a new branch in the repository; pre-condition for direct-write workflows that bypass PR review.
github.create_gist medium conf highaudit
Creates a gist; gists are public by default and have repeatedly been a leak vector for secrets and customer data.
github.create_or_update_file medium conf highaudit
Writes file content directly to a branch; combined with merge_pull_request, this lets an agent ship code without going through PR review.
github.create_pull_request low conf highallow
Opens a pull request proposing changes; review and merge gating remain in place.
github.create_pull_request_with_copilot medium conf mediumaudit
Delegates code authorship to Copilot and opens a PR; the resulting PR still passes through normal branch-protection review, but the human-in-the-loop boundary moves from 'wrote the code' to 'approved the PR.'
github.create_repository low conf highallow
Creates a new repository in an org or user account; standard provisioning event.
github.delete_file medium conf highaudit
Removes a file from a branch via direct commit; reversible from history but bypasses PR review when used outside a feature branch.
github.dismiss_notification low conf highallow
Marks a single notification as read or done for the caller.
github.fork_repository low conf highallow
Creates a fork of an existing repository under the caller's account or org.
github.get_code_scanning_alert medium conf highaudit
Reads details of a code scanning alert, including vulnerable code locations and exploit hints.
github.get_commit low conf highallow
Reads metadata and diff for a single commit.
github.get_copilot_space low conf mediumallow
Reads a Copilot Space configuration; returns the context the space exposes to Copilot.
github.get_dependabot_alert medium conf highaudit
Reads details of a Dependabot dependency vulnerability alert.
github.get_discussion low conf highallow
Reads a single discussion thread.
github.get_discussion_comments low conf highallow
Reads comments on a discussion thread.
github.get_file_contents low conf highallow
Reads the contents of a file at a given ref; private repo contents may include source code and configuration.
github.get_gist low conf highallow
Reads a single gist by id.
github.get_global_security_advisory low conf highallow
Reads a public global security advisory from the GitHub Advisory Database.
github.get_job_logs medium conf highaudit
Reads workflow job logs; logs frequently leak environment values, tokens, and connection strings.
github.get_label low conf highallow
Reads a single label definition.
github.get_latest_release low conf highallow
Reads the metadata of the most recent release for a repository.
github.get_me low conf highallow
Reads the authenticated user's profile.
github.get_notification_details low conf highallow
Reads details of a single notification thread.
github.get_release_by_tag low conf highallow
Reads release metadata for a specific tag.
github.get_repository_tree low conf highallow
Reads the git tree (file listing) for a repository at a given ref.
github.get_secret_scanning_alert medium conf highaudit
Reads a secret scanning alert; the alert payload may include the leaked secret value or a partial fingerprint.
github.get_tag low conf highallow
Reads tag metadata for a repository.
github.get_team_members low conf highallow
Lists members of an organization team; returns identifiable user data.
github.get_teams low conf highallow
Lists teams in an organization; returns team membership and slug data.
github.github_support_docs_search low conf highallow
Searches GitHub's public product and support documentation; read-only over public material.
github.issue_read low conf mediumallow
Reads issue details and comments; private repository issues may contain customer-reported PII or security details.
github.issue_write low conf highallow
Creates or updates an issue (title, body, assignees, state).
github.label_write low conf highallow
Creates, updates, or removes a label on a repository.
github.list_branches low conf highallow
Lists branches in a repository.
github.list_code_scanning_alerts medium conf highaudit
Enumerates code scanning alerts across a repository; surfaces unpatched vulnerabilities to the caller.
github.list_commits low conf mediumallow
Lists commits on a branch or path; surfaces author identity and timestamps.
github.list_copilot_spaces low conf mediumallow
Enumerates Copilot Spaces visible to the caller; metadata-only.
github.list_dependabot_alerts medium conf highaudit
Enumerates open Dependabot alerts; surfaces the unpatched dependency surface to the caller.
github.list_discussion_categories low conf highallow
Lists discussion categories configured on a repository.
github.list_discussions low conf highallow
Lists discussion threads on a repository.
github.list_gists low conf highallow
Lists gists for the authenticated user.
github.list_global_security_advisories low conf highallow
Lists public global security advisories.
github.list_issue_types low conf highallow
Lists configured issue types for an organization.
github.list_issues low conf highallow
Lists issues on a repository or for the caller.
github.list_label low conf highallow
Lists labels defined on a repository.
github.list_notifications low conf highallow
Lists the caller's GitHub notifications.
github.list_org_repository_security_advisories medium conf highaudit
Lists security advisories across an organization's repositories, including private/draft advisories.
github.list_pull_requests low conf highallow
Lists pull requests on a repository.
github.list_releases low conf highallow
Lists releases for a repository.
github.list_repository_security_advisories medium conf highaudit
Lists security advisories on a single repository, including private/draft advisories.
github.list_secret_scanning_alerts medium conf highaudit
Enumerates secret scanning alerts; an attacker reading this list can prioritize live credentials to harvest.
github.list_starred_repositories low conf highallow
Lists repositories the caller or another user has starred.
github.list_tags low conf highallow
Lists tags for a repository.
github.manage_notification_subscription low conf highallow
Updates the caller's subscription state for a single notification thread.
github.manage_repository_notification_subscription low conf highallow
Updates the caller's subscription state for an entire repository.
github.mark_all_notifications_read low conf highallow
Marks all of the caller's notifications as read.
github.merge_pull_request medium conf highaudit
Integrates a pull request into the target branch; for financial-system repositories this is in scope for SOX ITGCs and change-management controls.
github.projects_get low conf highallow
Reads metadata for a Projects v2 board, item, or field.
github.projects_list low conf highallow
Lists Projects v2 boards or items accessible to the caller.
github.projects_write low conf highallow
Creates, updates, or removes Projects v2 items, fields, or status; standard planning-board write.
github.pull_request_read low conf highallow
Reads pull request details, diffs, comments, and review state.
github.push_files medium conf highaudit
Commits a batch of file changes directly to a branch; combined with merge_pull_request, this enables ship-without-review.
github.request_copilot_review low conf highallow
Requests an AI Copilot code review on a pull request; review verdict is advisory and does not satisfy required-reviewer rules.
github.search_code medium conf highaudit
Searches code across accessible repositories; can surface secrets, credentials, or PII at scale and constitutes a data-exfiltration vector.
github.search_issues low conf mediumallow
Searches issues across accessible repositories; can surface PII reported in issue bodies at scale.
github.search_orgs low conf highallow
Searches GitHub organizations by name or attribute.
github.search_pull_requests low conf highallow
Searches pull requests across accessible repositories.
github.search_repositories low conf highallow
Searches repositories by name, description, or topic.
github.search_users low conf highallow
Searches GitHub users by login, name, or email; returns identifiable PII at scale.
github.star_repository low conf highallow
Adds a star on a repository as the authenticated user.
github.sub_issue_write low conf mediumallow
Creates, links, or removes a sub-issue parent/child relationship.
github.unstar_repository low conf highallow
Removes a star on a repository as the authenticated user.
github.update_gist medium conf highaudit
Updates an existing gist; public gists remain a leak surface for secrets and customer data.
github.update_pull_request low conf highallow
Updates pull request metadata such as title, body, base branch, or assignees.
github.update_pull_request_branch medium conf mediumaudit
Updates a PR head branch with the latest from base; rewrites branch state and can mask in-flight review feedback in change-controlled repos.