Server data from the Official MCP Registry
Trust scoring for domains, wallets, APIs. SSL+DNS+WHOIS+headers. Score 0-100.
Trust scoring for domains, wallets, APIs. SSL+DNS+WHOIS+headers. Score 0-100.
Remote endpoints: sse: https://trust-score.api.klymax402.com/mcp
This MCP server implements a trust scoring API for domains, wallets, and IPs with a payment model (x402 micropayments). The code is well-structured with proper input validation, no malicious patterns, and appropriate use of external APIs. However, there are several moderate-severity concerns: (1) unchecked arbitrary domain/URL fetching could enable SSRF attacks, (2) missing authentication/authorization on the main MCP endpoints, (3) environment variable handling is minimal, and (4) error messages could leak sensitive information. Permissions align well with the stated purpose. Supply chain analysis found 5 known vulnerabilities in dependencies.
5 files analyzed · 13 issues found
Security scores are indicators to help you make informed decisions, not guarantees. Always review permissions before connecting any MCP server.
This plugin requests these system permissions. Most are normal for its category.
Available as Local & Remote
This plugin can run on your machine or connect to a hosted endpoint. during install.
From the project's GitHub README.
Evaluate trustworthiness of any domain, URL, wallet, or API. Returns 0-100 score with 5 sub-scores: SSL, DNS, WHOIS, security headers, content. Zero-cost, zero-dependency. The trust layer agents need before interacting with unknown services. Pay-per-call via x402 (USDC on Base L2) -- no API key, no signup, no rate-limit wall.
Part of the klymax402 marketplace -- 100 x402 micropayment APIs for AI agents, one wallet, USDC on Base.
Add to your MCP client config (Claude Desktop, Cursor, ElizaOS, etc.):
{
"mcpServers": {
"trust-score": {
"url": "https://trust-score.api.klymax402.com/mcp"
}
}
}
curl -X POST "https://trust-score.api.klymax402.com/api/score" \
-H "Content-Type: application/json" \
-d '{"target":"..."}'
# -> 402 Payment Required, with an x402 payment challenge in the response body
Any x402-aware client (@x402/fetch, x402-agent-tools, ATXP) handles the 402 -> sign -> retry cycle automatically.
| Tool | Method | Path | Price | Description |
|---|---|---|---|---|
trust_score_evaluate | POST | /api/score | $0.01 | Evaluate trust of a domain, URL, wallet address, or API endpoint. Returns composite score 0-100 with grade (A+ to F), verdict (trusted/moderate/suspicious/dangerous), and 5 detailed sub-scores. |
trust_score_batch_compare | POST | /api/batch | $0.02 | Compare trustworthiness of 2-5 targets side by side. Returns all scores ranked from most to least trusted. |
trust_score_evaluateUse this when you need to check if a domain, website, API endpoint, or crypto wallet is safe to interact with. Returns a composite trust score 0-100 with letter grade (A+ to F), verdict (trusted/moderate/suspicious/dangerous), and 5 sub-scores:
Parameters
| Name | Type | Required | Description |
|---|---|---|---|
target | string | yes | Domain (example.com), full URL (https://api.example.com/v1), wallet address (0x...), or IP address to evaluate |
checks | array | no | Which checks to run. Default: all. Pass a subset like ["ssl","dns"] for faster results (under 2s). Full scan takes 3-8s. |
Example response:
{ compositeScore: 82, grade: "A", verdict: "trusted", subscores: { ssl: { score: 90, ... }, dns: { score: 85, ... }, ... } }
When to use: making payments, sending sensitive data, or trusting any external service. Essential for agent safety.
Not for: SEO analysis (use seo_audit_page), email validation (use email_verify_address), tech stack detection (use website_detect_tech_stack), port scanning (use network_scan_ports).
trust_score_batch_compareUse this when you need to compare the trustworthiness of multiple domains, URLs, or wallets and pick the safest option. Accepts 2-5 targets and returns trust scores for all, sorted from most to least trusted.
Parameters
| Name | Type | Required | Description |
|---|---|---|---|
targets | array | yes | List of 2-5 domains, URLs, or wallet addresses to evaluate and rank |
Not for: single targets (use trust_score_evaluate).
eip155:8453)100 x402 micropayment APIs for AI agents -- one wallet, USDC on Base, zero signup.
MIT
Be the first to review this server!
by Modelcontextprotocol · Developer Tools
Read, search, and manipulate Git repositories programmatically
by Toleno · Developer Tools
Toleno Network MCP Server — Manage your Toleno mining account with Claude AI using natural language.
by mcp-marketplace · Developer Tools
Create, build, and publish Python MCP servers to PyPI — conversationally.
by Microsoft · Content & Media
Convert files (PDF, Word, Excel, images, audio) to Markdown for LLM consumption
by mcp-marketplace · Developer Tools
Search and install MCP servers from inside your AI client.
by mcp-marketplace · Finance
Free stock data and market news for any MCP-compatible AI assistant.