MCP compliance catalog

Every MCP tool in the SCOPE compliance index, grouped by server — risk posture, regulatory exposure, and the tools that warrant tighter governance.
80MCP servers
1695tools
Reset 80 of 80 servers
Canva
32 tools · footprint 17
7 med 25 low
Granola
6 tools · footprint 17
3 high 1 med 2 low
Google Drive
7 tools · footprint 16
2 high 2 med 3 low
Guru
5 tools · footprint 16
3 med 2 low
Gmail
10 tools · footprint 15
2 high 1 med 7 low
Apollo
4 tools · footprint 14
1 high 2 med 1 low
Asana
25 tools · footprint 14
5 med 20 low
Fireflies
3 tools · footprint 14
2 high 1 low
GitLab
15 tools · footprint 14
1 high 4 med 10 low COSOSOX
Google BigQuery
5 tools · footprint 14
1 high 4 low COSOSOX
Google Calendar
8 tools · footprint 14
5 med 3 low
Pendo
15 tools · footprint 14
5 med 10 low
Hex
4 tools · footprint 13
3 med 1 low
Linear
21 tools · footprint 12
3 med 18 low
Plaid
5 tools · footprint 12
1 med 4 low GLBA
Honeycomb
10 tools · footprint 11
1 med 9 low
‹ PrevPage 4 of 5Next ›
GitLab
1 high 4 med 10 low · 15 tools · 1 SoD-flagged
regimes COSOISO_27001NIST_CSFSOC2SOX

Tools needing tighter control (1 of 15)

gitlab.manage_pipeline high conf mediumhuman approval
Creates, retries, or cancels CI/CD pipelines; can trigger or block production deployments.
All other tools (14)
gitlab.create_issue low conf highallow
Opens a new issue in a project.
gitlab.create_merge_request medium conf highaudit
Opens a merge request; entry point to production code change.
gitlab.create_workitem_note low conf highallow
Adds a comment to a work item.
gitlab.get_issue low conf highallow
Reads a single issue's contents.
gitlab.get_mcp_server_version low conf highallow
Returns the MCP server version string.
gitlab.get_merge_request low conf highallow
Reads merge request metadata and description.
gitlab.get_merge_request_commits low conf highallow
Lists commits attached to a merge request.
gitlab.get_merge_request_diffs medium conf mediumaudit
Reads code diffs; can surface secrets, customer data, or proprietary logic embedded in source.
gitlab.get_merge_request_pipelines low conf highallow
Lists CI pipelines associated with a merge request.
gitlab.get_pipeline_jobs low conf highallow
Reads CI job metadata and status.
gitlab.get_workitem_notes low conf highallow
Reads comments on a work item.
gitlab.search medium conf highaudit
Search across the GitLab instance; can surface code, issues, and merge requests beyond the agent's intended scope.
gitlab.search_labels low conf highallow
Looks up labels in a project or group.
gitlab.semantic_code_search medium conf mediumaudit
Semantic search across source; aggregates code context across repos and may expose secrets-in-code or IP.