MCP compliance catalog

Every MCP tool in the SCOPE compliance index, grouped by server — risk posture, regulatory exposure, and the tools that warrant tighter governance.
80MCP servers
1695tools
Reset 80 of 80 servers
Shopify
6 tools · footprint 10
1 med 5 low
Benchling
4 tools · footprint 9
2 high 2 med
AirOps
40 tools · footprint 6
5 med 35 low
Adobe Experience Manager
7 tools · footprint 4
2 med 5 low
Adobe Journey Optimizer
3 tools · footprint 4
3 low
Figma
16 tools · footprint 2
1 med 15 low
Gamma
4 tools · footprint 2
1 med 3 low
AWS Marketplace
11 tools · footprint 1
11 low
Ahrefs
42 tools · footprint 0
42 low
Aiera
39 tools · footprint 0
39 low
Benevity
2 tools · footprint 0
2 low
Bigdata.com
8 tools · footprint 0
8 low
BioRender
2 tools · footprint 0
2 low
Clerk
2 tools · footprint 0
2 low
Sigma
5 tools · footprint 0
5 low
Similarweb
26 tools · footprint 0
26 low
‹ PrevPage 5 of 5Next ›
Attio
4 high 14 med 19 low · 37 tools · 0 SoD-flagged
regimes APPICCPAGDPRISO_27001LGPDPIPEDAPIPLPOPIASOC2UK_GDPR

Tools needing tighter control (4 of 37)

attio.semantic-search-call-recordings high conf highOBO
Semantic search over call transcripts can expose sensitive customer conversations.
attio.get-call-recording high conf highOBO
Returns a specific call recording or transcript with verbatim conversation.
attio.semantic-search-emails high conf highOBO
Semantic search over email bodies; can surface confidential correspondence.
attio.get-email-content high conf highOBO
Returns full body of a captured email; verbatim correspondence.
All other tools (33)
attio.add-record-to-list low conf highallow
Adds an existing record to a list.
attio.create-comment low conf highallow
Posts a comment thread; visible to workspace members.
attio.create-note low conf highallow
Adds a note to a record; may capture sensitive customer context.
attio.create-record medium conf highaudit
Creates a CRM record; introduces new personal data into the system.
attio.create-task low conf highallow
Creates an internal to-do; no external effect.
attio.delete-comment medium conf highaudit
Removes a comment; collaboration history is altered.
attio.get-note-body medium conf highaudit
Returns full note text which may contain customer PII or contract detail.
attio.get-records-by-ids medium conf highaudit
Fetches specific records by ID; returns PII fields.
attio.list-attribute-definitions low conf highallow
Reads schema definitions for an Attio object.
attio.list-comment-replies low conf highallow
Reads replies on a comment thread.
attio.list-comments low conf highallow
Reads existing comments.
attio.list-list-attribute-definitions low conf highallow
Reads attribute schema for a list.
attio.list-lists low conf highallow
Enumerates lists in the workspace.
attio.list-records medium conf highaudit
Lists records of a CRM object; can return bulk PII.
attio.list-records-in-list medium conf highaudit
Returns records on a list; can expose curated PII segments.
attio.list-tasks low conf highallow
Lists tasks across the workspace.
attio.list-workspace-members medium conf highaudit
Returns workspace member identities and roles.
attio.list-workspace-teams low conf highallow
Lists configured teams and their members.
attio.run-basic-report medium conf highaudit
Runs a built-in report; aggregates customer pipeline data.
attio.search-call-recordings-by-metadata medium conf highaudit
Searches call recordings by metadata; can surface sales/customer call records.
attio.search-emails-by-metadata medium conf highaudit
Searches captured emails by sender/date/subject metadata.
attio.search-meetings low conf highallow
Searches captured meeting metadata.
attio.search-notes-by-metadata low conf highallow
Searches notes by author/date/record metadata.
attio.search-records medium conf highaudit
Searches CRM records; results can include contact PII across the workspace.
attio.semantic-search-notes medium conf highaudit
Free-form semantic search over note bodies; can surface sensitive customer context.
attio.update-list low conf highallow
Updates list configuration.
attio.update-list-entry-by-id low conf highallow
Modifies a list entry's per-list attributes.
attio.update-list-entry-by-record-id low conf highallow
Modifies a list entry identified by its record.
attio.update-note low conf highallow
Modifies an existing note.
attio.update-record medium conf highaudit
Modifies an existing CRM record's fields including personal data.
attio.update-task low conf highallow
Modifies task status, assignee, or content.
attio.upsert-record medium conf highaudit
Creates or updates a record by matching attributes; can silently overwrite existing PII.
attio.whoami low conf highallow
Returns current authenticated principal.