From 730c93de7ea9487dfca5c14f11727cce23f1cbdd Mon Sep 17 00:00:00 2001 From: Palash Bagchi Date: Wed, 8 Jul 2026 08:27:14 +0530 Subject: [PATCH 1/3] Add nqzai/kakunin-mcp to Security --- README.md | 1 + 1 file changed, 1 insertion(+) diff --git a/README.md b/README.md index 5b03c3aeb..2fc5a679b 100644 --- a/README.md +++ b/README.md @@ -2630,6 +2630,7 @@ Tools for conducting research, surveys, interviews, and data collection. - [astafford8488/agentaegis-mcp](https://github.com/astafford8488/agentaegis-mcp) [![astafford8488/agentaegis-mcp MCP server](https://glama.ai/mcp/servers/astafford8488/agentaegis-mcp/badges/score.svg)](https://glama.ai/mcp/servers/astafford8488/agentaegis-mcp) 📇 ☁️ - Security & trust layer for AI agents. Scan an MCP server or skill *before* you install it (`scan_mcp_plugin`, `scan_skill`) — flags exfiltration, prompt-injection sinks, dangerous capabilities, install hooks and obfuscation → PROCEED/CAUTION/BLOCK. Plus `vet_endpoint` (endpoint safety verdict before an agent calls or pays it) and 25 more tools: vuln scans, threat intel, compliance (SOC 2/ISO 27001/HIPAA), code security (SAST/secret/dependency), identity — 28 total. Per-call billing via API key or x402 USDC on Base; free discovery tier. - [qinisolabs/qiniso](https://github.com/qinisolabs/qiniso) [![qinisolabs/qiniso MCP server](https://glama.ai/mcp/servers/qinisolabs/qiniso/badges/score.svg)](https://glama.ai/mcp/servers/qinisolabs/qiniso) 📇 🏠 ☁️ - 56 deterministic fact-checkers in one server (IBAN, VAT, VIN, GTIN/barcodes, national & tax IDs, crypto addresses, phone, dates, holidays) — verify the structured facts an agent emits against checksums and curated data. - [node-man/dechonet-mcp](https://github.com/node-man/dechonet-mcp) [![node-man/dechonet-mcp MCP server](https://glama.ai/mcp/servers/node-man/dechonet-mcp/badges/score.svg)](https://glama.ai/mcp/servers/node-man/dechonet-mcp) 📇 ☁️ - Domain security reconnaissance for AI agents. 13 tools — DNS + DNSSEC, SSL/TLS chain & grade, HTTP security headers, SPF/DKIM/DMARC email auth, TCP port scan, ASN, RDAP/WHOIS — plus a one-shot `security_scan` returning a 0-100 Health Score (A–F). Free, no API key. `npx -y dechonet-mcp` +- [nqzai/kakunin-mcp](https://github.com/nqzai/kakunin-mcp) 🎖️ 📇 ☁️ 🏠 - Compliance and identity for AI agents — verify an agent's certificate scope, read its behavioral risk score, and append to an immutable audit trail. X.509 identity issued via AWS KMS; MiCA / EU AI Act aligned. `npx -y @kakunin/mcp` - [honeylabshq/honeylabs-mcp](https://github.com/honeylabshq/honeylabs-mcp) [![honeylabs-mcp MCP server](https://glama.ai/mcp/servers/honeylabshq/honeylabs-mcp/badges/score.svg)](https://glama.ai/mcp/servers/honeylabshq/honeylabs-mcp) 🐍 ☁️ - Honeypot threat intelligence for AI agents: 90 days of probe data from a sensor network for IP reputation, scanner classification, CVE probing trends, and JA4/JA4H/HASSH fingerprints. Remote MCP, free tier. - [kent-tokyo/shohei](https://github.com/kent-tokyo/shohei) [![kent-tokyo/shohei MCP server](https://glama.ai/mcp/servers/kent-tokyo/shohei/badges/score.svg)](https://glama.ai/mcp/servers/kent-tokyo/shohei) 🦀 ☁️ 🏠 🍎 🪟 🐧 - Rust infrastructure diagnostics MCP server for AI agents: DNS checks, TLS certificate chain inspection, email security, global DNS propagation, and DNS latency benchmarking. - [srinivasan-sundaresan95/orihime](https://github.com/srinivasan-sundaresan95/orihime) [![orihime MCP server](https://glama.ai/mcp/servers/srinivasan-sundaresan95/orihime/badges/score.svg)](https://glama.ai/mcp/servers/srinivasan-sundaresan95/orihime) 🐍 🏠 🍎 🪟 🐧 - Cross-repository code knowledge graph MCP server for Java, Kotlin, JavaScript, and TypeScript. Indexes source into embedded KuzuDB via tree-sitter; 30+ tools for call-flow tracing, multi-hop taint analysis (OWASP/CWE/PCI/STIG reports), entry-point reachability filtering, performance hotspot detection, and license compliance — without reading source files. 95% fewer tokens vs source-reading baseline. `pip install orihime` From f3fe62cb6b78194568a287d50d04b3f71cb9606d Mon Sep 17 00:00:00 2001 From: Palash Bagchi Date: Wed, 8 Jul 2026 08:36:56 +0530 Subject: [PATCH 2/3] Add Glama score badge for kakunin-mcp --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index 2fc5a679b..06e7bb11a 100644 --- a/README.md +++ b/README.md @@ -2630,7 +2630,7 @@ Tools for conducting research, surveys, interviews, and data collection. - [astafford8488/agentaegis-mcp](https://github.com/astafford8488/agentaegis-mcp) [![astafford8488/agentaegis-mcp MCP server](https://glama.ai/mcp/servers/astafford8488/agentaegis-mcp/badges/score.svg)](https://glama.ai/mcp/servers/astafford8488/agentaegis-mcp) 📇 ☁️ - Security & trust layer for AI agents. Scan an MCP server or skill *before* you install it (`scan_mcp_plugin`, `scan_skill`) — flags exfiltration, prompt-injection sinks, dangerous capabilities, install hooks and obfuscation → PROCEED/CAUTION/BLOCK. Plus `vet_endpoint` (endpoint safety verdict before an agent calls or pays it) and 25 more tools: vuln scans, threat intel, compliance (SOC 2/ISO 27001/HIPAA), code security (SAST/secret/dependency), identity — 28 total. Per-call billing via API key or x402 USDC on Base; free discovery tier. - [qinisolabs/qiniso](https://github.com/qinisolabs/qiniso) [![qinisolabs/qiniso MCP server](https://glama.ai/mcp/servers/qinisolabs/qiniso/badges/score.svg)](https://glama.ai/mcp/servers/qinisolabs/qiniso) 📇 🏠 ☁️ - 56 deterministic fact-checkers in one server (IBAN, VAT, VIN, GTIN/barcodes, national & tax IDs, crypto addresses, phone, dates, holidays) — verify the structured facts an agent emits against checksums and curated data. - [node-man/dechonet-mcp](https://github.com/node-man/dechonet-mcp) [![node-man/dechonet-mcp MCP server](https://glama.ai/mcp/servers/node-man/dechonet-mcp/badges/score.svg)](https://glama.ai/mcp/servers/node-man/dechonet-mcp) 📇 ☁️ - Domain security reconnaissance for AI agents. 13 tools — DNS + DNSSEC, SSL/TLS chain & grade, HTTP security headers, SPF/DKIM/DMARC email auth, TCP port scan, ASN, RDAP/WHOIS — plus a one-shot `security_scan` returning a 0-100 Health Score (A–F). Free, no API key. `npx -y dechonet-mcp` -- [nqzai/kakunin-mcp](https://github.com/nqzai/kakunin-mcp) 🎖️ 📇 ☁️ 🏠 - Compliance and identity for AI agents — verify an agent's certificate scope, read its behavioral risk score, and append to an immutable audit trail. X.509 identity issued via AWS KMS; MiCA / EU AI Act aligned. `npx -y @kakunin/mcp` +- [nqzai/kakunin-mcp](https://github.com/nqzai/kakunin-mcp) [![nqzai/kakunin-mcp MCP server](https://glama.ai/mcp/servers/nqzai/kakunin-mcp/badges/score.svg)](https://glama.ai/mcp/servers/nqzai/kakunin-mcp) 🎖️ 📇 ☁️ 🏠 - Compliance and identity for AI agents — verify an agent's certificate scope, read its behavioral risk score, and append to an immutable audit trail. X.509 identity issued via AWS KMS; MiCA / EU AI Act aligned. `npx -y @kakunin/mcp` - [honeylabshq/honeylabs-mcp](https://github.com/honeylabshq/honeylabs-mcp) [![honeylabs-mcp MCP server](https://glama.ai/mcp/servers/honeylabshq/honeylabs-mcp/badges/score.svg)](https://glama.ai/mcp/servers/honeylabshq/honeylabs-mcp) 🐍 ☁️ - Honeypot threat intelligence for AI agents: 90 days of probe data from a sensor network for IP reputation, scanner classification, CVE probing trends, and JA4/JA4H/HASSH fingerprints. Remote MCP, free tier. - [kent-tokyo/shohei](https://github.com/kent-tokyo/shohei) [![kent-tokyo/shohei MCP server](https://glama.ai/mcp/servers/kent-tokyo/shohei/badges/score.svg)](https://glama.ai/mcp/servers/kent-tokyo/shohei) 🦀 ☁️ 🏠 🍎 🪟 🐧 - Rust infrastructure diagnostics MCP server for AI agents: DNS checks, TLS certificate chain inspection, email security, global DNS propagation, and DNS latency benchmarking. - [srinivasan-sundaresan95/orihime](https://github.com/srinivasan-sundaresan95/orihime) [![orihime MCP server](https://glama.ai/mcp/servers/srinivasan-sundaresan95/orihime/badges/score.svg)](https://glama.ai/mcp/servers/srinivasan-sundaresan95/orihime) 🐍 🏠 🍎 🪟 🐧 - Cross-repository code knowledge graph MCP server for Java, Kotlin, JavaScript, and TypeScript. Indexes source into embedded KuzuDB via tree-sitter; 30+ tools for call-flow tracing, multi-hop taint analysis (OWASP/CWE/PCI/STIG reports), entry-point reachability filtering, performance hotspot detection, and license compliance — without reading source files. 95% fewer tokens vs source-reading baseline. `pip install orihime` From 50ba4f7f8180114fe5e479b9c383549bb06d06c9 Mon Sep 17 00:00:00 2001 From: Palash Bagchi Date: Thu, 9 Jul 2026 09:51:11 +0530 Subject: [PATCH 3/3] Update kakunin-mcp repo link after org transfer --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index 06e7bb11a..8269fd2d2 100644 --- a/README.md +++ b/README.md @@ -2630,7 +2630,7 @@ Tools for conducting research, surveys, interviews, and data collection. - [astafford8488/agentaegis-mcp](https://github.com/astafford8488/agentaegis-mcp) [![astafford8488/agentaegis-mcp MCP server](https://glama.ai/mcp/servers/astafford8488/agentaegis-mcp/badges/score.svg)](https://glama.ai/mcp/servers/astafford8488/agentaegis-mcp) 📇 ☁️ - Security & trust layer for AI agents. Scan an MCP server or skill *before* you install it (`scan_mcp_plugin`, `scan_skill`) — flags exfiltration, prompt-injection sinks, dangerous capabilities, install hooks and obfuscation → PROCEED/CAUTION/BLOCK. Plus `vet_endpoint` (endpoint safety verdict before an agent calls or pays it) and 25 more tools: vuln scans, threat intel, compliance (SOC 2/ISO 27001/HIPAA), code security (SAST/secret/dependency), identity — 28 total. Per-call billing via API key or x402 USDC on Base; free discovery tier. - [qinisolabs/qiniso](https://github.com/qinisolabs/qiniso) [![qinisolabs/qiniso MCP server](https://glama.ai/mcp/servers/qinisolabs/qiniso/badges/score.svg)](https://glama.ai/mcp/servers/qinisolabs/qiniso) 📇 🏠 ☁️ - 56 deterministic fact-checkers in one server (IBAN, VAT, VIN, GTIN/barcodes, national & tax IDs, crypto addresses, phone, dates, holidays) — verify the structured facts an agent emits against checksums and curated data. - [node-man/dechonet-mcp](https://github.com/node-man/dechonet-mcp) [![node-man/dechonet-mcp MCP server](https://glama.ai/mcp/servers/node-man/dechonet-mcp/badges/score.svg)](https://glama.ai/mcp/servers/node-man/dechonet-mcp) 📇 ☁️ - Domain security reconnaissance for AI agents. 13 tools — DNS + DNSSEC, SSL/TLS chain & grade, HTTP security headers, SPF/DKIM/DMARC email auth, TCP port scan, ASN, RDAP/WHOIS — plus a one-shot `security_scan` returning a 0-100 Health Score (A–F). Free, no API key. `npx -y dechonet-mcp` -- [nqzai/kakunin-mcp](https://github.com/nqzai/kakunin-mcp) [![nqzai/kakunin-mcp MCP server](https://glama.ai/mcp/servers/nqzai/kakunin-mcp/badges/score.svg)](https://glama.ai/mcp/servers/nqzai/kakunin-mcp) 🎖️ 📇 ☁️ 🏠 - Compliance and identity for AI agents — verify an agent's certificate scope, read its behavioral risk score, and append to an immutable audit trail. X.509 identity issued via AWS KMS; MiCA / EU AI Act aligned. `npx -y @kakunin/mcp` +- [kakunin-ai/kakunin-mcp](https://github.com/kakunin-ai/kakunin-mcp) [![nqzai/kakunin-mcp MCP server](https://glama.ai/mcp/servers/nqzai/kakunin-mcp/badges/score.svg)](https://glama.ai/mcp/servers/nqzai/kakunin-mcp) 🎖️ 📇 ☁️ 🏠 - Compliance and identity for AI agents — verify an agent's certificate scope, read its behavioral risk score, and append to an immutable audit trail. X.509 identity issued via AWS KMS; MiCA / EU AI Act aligned. `npx -y @kakunin/mcp` - [honeylabshq/honeylabs-mcp](https://github.com/honeylabshq/honeylabs-mcp) [![honeylabs-mcp MCP server](https://glama.ai/mcp/servers/honeylabshq/honeylabs-mcp/badges/score.svg)](https://glama.ai/mcp/servers/honeylabshq/honeylabs-mcp) 🐍 ☁️ - Honeypot threat intelligence for AI agents: 90 days of probe data from a sensor network for IP reputation, scanner classification, CVE probing trends, and JA4/JA4H/HASSH fingerprints. Remote MCP, free tier. - [kent-tokyo/shohei](https://github.com/kent-tokyo/shohei) [![kent-tokyo/shohei MCP server](https://glama.ai/mcp/servers/kent-tokyo/shohei/badges/score.svg)](https://glama.ai/mcp/servers/kent-tokyo/shohei) 🦀 ☁️ 🏠 🍎 🪟 🐧 - Rust infrastructure diagnostics MCP server for AI agents: DNS checks, TLS certificate chain inspection, email security, global DNS propagation, and DNS latency benchmarking. - [srinivasan-sundaresan95/orihime](https://github.com/srinivasan-sundaresan95/orihime) [![orihime MCP server](https://glama.ai/mcp/servers/srinivasan-sundaresan95/orihime/badges/score.svg)](https://glama.ai/mcp/servers/srinivasan-sundaresan95/orihime) 🐍 🏠 🍎 🪟 🐧 - Cross-repository code knowledge graph MCP server for Java, Kotlin, JavaScript, and TypeScript. Indexes source into embedded KuzuDB via tree-sitter; 30+ tools for call-flow tracing, multi-hop taint analysis (OWASP/CWE/PCI/STIG reports), entry-point reachability filtering, performance hotspot detection, and license compliance — without reading source files. 95% fewer tokens vs source-reading baseline. `pip install orihime`