MCP compliance catalog

Every MCP tool in the SCOPE compliance index, grouped by server — risk posture, regulatory exposure, and the tools that warrant tighter governance.
80MCP servers
1695tools
Reset 80 of 80 servers
Intuit QuickBooks
51 tools · footprint 188
15 critical 10 high 17 med 9 low COSOGLBA+3 more
PayPal
33 tools · footprint 86
6 critical 7 high 9 med 11 low COSOGLBA+3 more
Stripe
26 tools · footprint 77
3 critical 7 high 10 med 6 low COSOPCI+2 more
PostHog
36 tools · footprint 69
6 high 22 med 8 low
Supabase
32 tools · footprint 69
4 critical 4 high 8 med 16 low COSOSOX
Salesforce
32 tools · footprint 60
4 critical 2 high 9 med 17 low COSOSOX
Close
64 tools · footprint 59
5 high 22 med 37 low COSOSOX
Cloudflare
26 tools · footprint 58
3 critical 4 high 6 med 13 low
Webflow
23 tools · footprint 57
2 critical 5 high 10 med 6 low
PagerDuty
64 tools · footprint 55
5 high 16 med 43 low
Box
37 tools · footprint 50
10 high 14 med 13 low COSOHIPAA+1 more
Gusto
36 tools · footprint 48
12 high 11 med 13 low COSOGLBA+1 more
ActiveCampaign
58 tools · footprint 47
4 high 15 med 39 low COSOSOX
Sanity
36 tools · footprint 47
1 critical 5 high 12 med 18 low
Amplitude
43 tools · footprint 44
6 high 16 med 21 low
Sentry
25 tools · footprint 43
3 high 14 med 8 low
‹ PrevPage 1 of 5Next ›
Stytch
1 critical 2 high 2 med 2 low · 7 tools · 3 SoD-flagged
regimes APPICCPAGDPRISO_27001LGPDNIST_CSFNY_DFS_500PIPEDAPIPLPOPIASOC2UK_GDPR

Tools needing tighter control (3 of 7)

stytch.updateConsumerSDKConfig critical conf highhuman approval
Reconfigures consumer SDK settings, enabled auth products, and permissions; misconfiguration can disable MFA or lock users out at scale.
stytch.createRedirectURLs high conf highhuman approval
Registers new authentication callback URLs; an attacker-controlled URL here enables credential interception.
stytch.createPublicToken high conf mediumhuman approval
Issues a new public token for a project; expands the set of identifiers that can initiate auth flows.
All other tools (4)
stytch.createProject medium conf highaudit
Creates a new Stytch project; expands the workspace's authentication footprint.
stytch.getAllPublicTokens medium conf mediumaudit
Reads public tokens used by client applications; intended public credentials but still a credential.
stytch.getAllRedirectURLs low conf highallow
Reads registered redirect URLs for the project.
stytch.listProjects low conf highallow
Lists Stytch projects in the workspace.