mcp-lock
mcpguards/mcp-lockMCP servers are installed via npx -y @scope/package — which silently downloads
the latest version every time your AI tool starts, with no integrity check.
mcp-lock fixes this by recording exact tarball hashes on first run and detecting
any changes on every run after that — the same guarantee npm ci gives you for
Node.js projects.
Security Scan
Security scan pending — this server has not yet been analyzed.
Risk Surface
Risk surface analysis pending — tool annotation scanning is coming soon.
Publisher Verification
Not yet verified by the Official MCP Registry.
Is this your server?
Create a free RNWY account to connect your on-chain identity to this server. MCP server claiming is coming — register now and you'll be first in line.
Create your account →Indexed from Smithery · Updates nightly