MCP compliance catalog

Every MCP tool in the SCOPE compliance index, grouped by server — risk posture, regulatory exposure, and the tools that warrant tighter governance.
80MCP servers
1695tools
Reset 80 of 80 servers
Vercel
20 tools · footprint 41
2 critical 3 high 2 med 13 low COSOSOX
Zapier
14 tools · footprint 39
1 critical 3 high 3 med 7 low COSOPCI+1 more
GitHub
83 tools · footprint 38
1 high 20 med 62 low COSOSOX
Snowflake
6 tools · footprint 37
2 critical 3 high 1 med COSOSOX
Calendly
35 tools · footprint 34
2 high 13 med 20 low
Smartsheet
42 tools · footprint 34
2 high 9 med 31 low COSOSOX
Ramp
17 tools · footprint 33
5 high 5 med 7 low COSOGLBA+2 more
Attio
37 tools · footprint 32
4 high 14 med 19 low
Egnyte
21 tools · footprint 31
3 high 9 med 9 low
Stytch
7 tools · footprint 31
1 critical 2 high 2 med 2 low
Wix
16 tools · footprint 29
1 critical 1 high 1 med 13 low COSOPCI+1 more
WordPress.com
19 tools · footprint 28
3 high 6 med 10 low COSOSOX
Oracle NetSuite
11 tools · footprint 27
3 high 3 med 5 low COSOSOX
Atlassian Rovo
54 tools · footprint 24
13 med 41 low
ZoomInfo
15 tools · footprint 24
5 high 4 med 6 low
Braze
40 tools · footprint 23
1 high 5 med 34 low COSOSOX
‹ PrevPage 2 of 5Next ›
Stytch
1 critical 2 high 2 med 2 low · 7 tools · 3 SoD-flagged
regimes APPICCPAGDPRISO_27001LGPDNIST_CSFNY_DFS_500PIPEDAPIPLPOPIASOC2UK_GDPR

Tools needing tighter control (3 of 7)

stytch.updateConsumerSDKConfig critical conf highhuman approval
Reconfigures consumer SDK settings, enabled auth products, and permissions; misconfiguration can disable MFA or lock users out at scale.
stytch.createRedirectURLs high conf highhuman approval
Registers new authentication callback URLs; an attacker-controlled URL here enables credential interception.
stytch.createPublicToken high conf mediumhuman approval
Issues a new public token for a project; expands the set of identifiers that can initiate auth flows.
All other tools (4)
stytch.createProject medium conf highaudit
Creates a new Stytch project; expands the workspace's authentication footprint.
stytch.getAllPublicTokens medium conf mediumaudit
Reads public tokens used by client applications; intended public credentials but still a credential.
stytch.getAllRedirectURLs low conf highallow
Reads registered redirect URLs for the project.
stytch.listProjects low conf highallow
Lists Stytch projects in the workspace.