Plugin/Skill Recommendation
Name: MCP Doctor
URL: https://github.com/xlyoung/mcp-doctor
Category: Developer Tools / MCP Security
Compatibility: Claude Code, Cursor, Windsurf, VS Code (any MCP client)
Description
MCP Doctor is a CLI tool that helps Claude Code users safely discover, evaluate, and install MCP servers. Before connecting an MCP server to your agent, MCP Doctor:
- Scans for 9 security vulnerabilities: SSRF, path traversal, command injection, prompt injection, credential leak, tool poisoning, tool shadowing, excessive permissions, insecure defaults
- Scores quality (0-100) across 5 dimensions: code quality, documentation, security posture, maintenance activity, ecosystem integration
- Maintains a curated registry of 100+ pre-scored MCP servers
Usage with Claude Code
# Scan before installing
mcpdoctor scan ./mcp-server/
# Check quality score
mcpdoctor score ./mcp-server/
# Find safe, pre-vetted servers
mcpdoctor search filesystem
Install
Why It Matters for Claude Code
With 1000+ MCP servers available, connecting an unvetted server to Claude Code is a real security risk. MCP Doctor acts as a pre-flight check — scan before you connect.
Plugin/Skill Recommendation
Name: MCP Doctor
URL: https://github.com/xlyoung/mcp-doctor
Category: Developer Tools / MCP Security
Compatibility: Claude Code, Cursor, Windsurf, VS Code (any MCP client)
Description
MCP Doctor is a CLI tool that helps Claude Code users safely discover, evaluate, and install MCP servers. Before connecting an MCP server to your agent, MCP Doctor:
Usage with Claude Code
Install
Why It Matters for Claude Code
With 1000+ MCP servers available, connecting an unvetted server to Claude Code is a real security risk. MCP Doctor acts as a pre-flight check — scan before you connect.