MCP compliance catalog

Every MCP tool in the SCOPE compliance index, grouped by server — risk posture, regulatory exposure, and the tools that warrant tighter governance.
80MCP servers
1695tools
Reset 80 of 80 servers
Intuit QuickBooks
51 tools · footprint 188
15 critical 10 high 17 med 9 low COSOGLBA+3 more
PayPal
33 tools · footprint 86
6 critical 7 high 9 med 11 low COSOGLBA+3 more
Stripe
26 tools · footprint 77
3 critical 7 high 10 med 6 low COSOPCI+2 more
PostHog
36 tools · footprint 69
6 high 22 med 8 low
Supabase
32 tools · footprint 69
4 critical 4 high 8 med 16 low COSOSOX
Salesforce
32 tools · footprint 60
4 critical 2 high 9 med 17 low COSOSOX
Close
64 tools · footprint 59
5 high 22 med 37 low COSOSOX
Cloudflare
26 tools · footprint 58
3 critical 4 high 6 med 13 low
Webflow
23 tools · footprint 57
2 critical 5 high 10 med 6 low
PagerDuty
64 tools · footprint 55
5 high 16 med 43 low
Box
37 tools · footprint 50
10 high 14 med 13 low COSOHIPAA+1 more
Gusto
36 tools · footprint 48
12 high 11 med 13 low COSOGLBA+1 more
ActiveCampaign
58 tools · footprint 47
4 high 15 med 39 low COSOSOX
Sanity
36 tools · footprint 47
1 critical 5 high 12 med 18 low
Amplitude
43 tools · footprint 44
6 high 16 med 21 low
Sentry
25 tools · footprint 43
3 high 14 med 8 low
‹ PrevPage 1 of 5Next ›
EgnyteDocs ↗
3 high 9 med 9 low · 21 tools · 2 SoD-flagged
regimes APPICCPAGDPRISO_27001LGPDPIPEDAPIPLPOPIASOC2UK_GDPR

Tools needing tighter control (4 of 21)

egnyte.download_file_by_id high conf highOBO
Pulls a specific file out of Egnyte; high exposure if the file contains PII, financial, or regulated content.
egnyte.download_file_by_path high conf highOBO
Pulls a file by path; same exfiltration profile as id-based download.
egnyte.create_link high conf highhuman approval
Issues a shareable link to a file or folder; primary external-exfiltration vector.
egnyte.set_file_metadata medium conf mediumhuman approval
Updates file labels and metadata; may alter classification, retention, or DLP policy enforcement.
All other tools (17)
egnyte.advanced_search medium conf highaudit
Filtered search over file metadata and content; broader recall than basic search.
egnyte.ask_copilot medium conf mediumaudit
Free-form copilot Q&A grounded in user-accessible Egnyte content; answer scope unbounded by single document.
egnyte.ask_document medium conf highaudit
Q&A grounded in a single document; answer surfaces document contents that may include sensitive data.
egnyte.ask_knowledge_base medium conf mediumaudit
Q&A scoped to a knowledge base; same content-exposure profile as ask_copilot.
egnyte.create_comment low conf highallow
Adds a comment on a file.
egnyte.create_folder low conf highallow
Adds an empty folder to the file tree.
egnyte.fetch medium conf highaudit
Retrieves a file's contents into the agent context; regulated data leaves system of record into the LLM session.
egnyte.get_comment low conf highallow
Reads a single comment.
egnyte.get_link_details low conf highallow
Returns metadata for a specific share link.
egnyte.list_comments low conf highallow
Reads comment threads on a file.
egnyte.list_filesystem_by_path low conf highallow
Enumerates folder contents; reveals file existence and naming structure.
egnyte.list_knowledge_bases low conf highallow
Lists knowledge bases configured for the workspace.
egnyte.list_links low conf highallow
Lists existing share links visible to the user.
egnyte.list_projects low conf highallow
Lists Egnyte project workspaces visible to the user.
egnyte.search medium conf highaudit
Returns content matches across the corporate file store; can surface regulated documents agents weren't intended to see.
egnyte.summarize_document medium conf highaudit
Generates a summary of a document; reproduces regulated content in derivative form.
egnyte.upload_file medium conf highaudit
Writes new content into the system of record; can introduce malicious or noncompliant material.