[mcp-inspector] MCP Inspector Report - 2026-05-25

[github-actions[bot]]

Summary

• Servers Inspected: 27 files
• By Type: HTTP: 7, Container: 13, Local: 4, Other (CLI/import/safe-output): 3
• Secrets Required: 10 servers need credentials
• Wildcard allowed: 7 servers ⚠️

Inventory Table

Server	File	Type	Tools	Secrets	Notes
agentdb	agentdb.md	local (npx)	wildcard ⚠️	—	Cache-memory backed
arxiv	arxiv.md	container	3	—	Search + PDF
ast-grep	ast-grep.md	container	wildcard ⚠️	—	Structural code search
azure	azure.md	container	6	AZURE_* (3)	Read-only; explicit allowlist
brave-search	brave.md	container	wildcard ⚠️	BRAVE_API_KEY	Web search
context7	context7.md	container	2	CONTEXT7_API_KEY	Library docs
datadog	datadog.md	http	6	DD_* (4)	APM/monitoring; header auth
deepwiki	deepwiki.md	http	3	—	Public SSE; repo docs Q&A
drain3	drain3.md	http (local)	8	—	Log parsing; local service
fabric-rti	fabric-rti.md	local (uvx)	12	AZURE_* (3)	Kusto/RTI; read-only
grafana	grafana.md	container	7	GRAFANA_* (2)	Tempo traces; write disabled
jupyter	jupyter.md	http (service)	4	—	Dual container services
kreuzberg	kreuzberg.md	container	10	—	Doc extraction; workspace RO
markitdown	markitdown.md	container	wildcard ⚠️	—	Content conversion
mempalace	mempalace.md	http (local)	19	—	Semantic memory; ChromaDB
microsoftdocs	microsoft-docs.md	http	wildcard ⚠️	—	Public read-only docs
notion	notion.md	container	4	NOTION_API_TOKEN	Read + safe-output write
semgrep	semgrep.md	container	3	—	Static analysis; was wildcard
(sentrux)	sentrux.md	CLI only	bash CLI	—	No MCP; stdio not supported
sentry	sentry.md	local (npx)	15	SENTRY_* (2)	Full issue/trace/AI analysis
(serena-go)	serena-go.md	import	via serena	—	Wraps serena.md for Go
serena	serena.md	container	LSP-based	—	Multi-language; parameterized
memory	server-memory.md	container	4	—	K/V memory; cache-memory mount
skillz	skillz.md	container	wildcard ⚠️	—	Loads from .github/skills/
(slack)	slack.md	safe-output only	safe-output job	SLACK_BOT_TOKEN	No MCP; post-to-slack-channel
svelte	svelte.md	http	5	—	Public Svelte/SvelteKit docs
tavily	tavily.md	http	wildcard ⚠️	TAVILY_API_KEY	Web research; Bearer auth

Observations

🔐 Wildcard `allowed` — 7 servers

The following servers use allowed: ["*"], granting access to all tools exposed by the server. This is a security consideration — if the upstream server adds new write/mutating tools, they become accessible without an explicit allowlist update.

Server	Justification in file
agentdb	None documented
ast-grep	Tool names are not stable upstream
brave-search	Read-only; small surface
markitdown	Tool names versioned upstream
microsoftdocs	Public read-only
skillz	None documented
tavily	Pending tool inventory

Recommendation: Add explicit allowlists to agentdb and skillz — no justification is documented for the wildcard. The others have security decision comments.

🔑 Secrets Summary — 10 servers

Secret	Used By
AZURE_TENANT_ID, AZURE_CLIENT_ID, AZURE_CLIENT_SECRET	azure, fabric-rti
BRAVE_API_KEY	brave-search
CONTEXT7_API_KEY	context7
DD_API_KEY, DD_APPLICATION_KEY / DD_APP_KEY, DD_SITE	datadog
GRAFANA_URL, GRAFANA_SERVICE_ACCOUNT_TOKEN	grafana
NOTION_API_TOKEN	notion
SENTRY_ACCESS_TOKEN, SENTRY_OPENAI_API_KEY	sentry
SLACK_BOT_TOKEN	slack
TAVILY_API_KEY	tavily

⚙️ Special Configurations

• sentrux: No MCP server — installs a CLI binary (sentrux) to PATH. stdio MCP transport not supported by gateway. Used directly via bash.
• slack: No MCP server — provides a post-to-slack-channel custom safe-output job. Message limit: 200 characters. Supports staged mode.
• serena-go: Not a standalone server — re-exports serena.md with languages: ["go"]. Adds Go-specific analysis guidance.
• drain3 & mempalace: Start a local HTTP service as a setup step, then connect to localhost. Cache-memory backed.
• jupyter: Uses dual GitHub Actions service containers (jupyter + jupyter-mcp).
• datadog: Uses HTTP headers for auth (not Bearer token pattern).

Recommendations

1. Add explicit allowlists to agentdb.md and skillz.md — wildcard with no documented justification.
2. Document tool inventory for tavily.md (note says "pending follow-up").
3. Review context7.md — uses container: key in frontmatter rather than standard image:; verify compilation is correct.
4. Consider pinning ast-grep, markitdown, and kreuzberg container versions (latest tag) for supply-chain reproducibility.

References:

• Cache JSON: /tmp/gh-aw/cache-memory/mcp-inspections/2026-05-25.json
• Run: §26415752516

Generated by 🔍 MCP Inspector Agent · sonnet46 1.4M · ◷

• expires on May 26, 2026, 7:15 PM UTC

[github-actions[bot]]

This discussion was automatically closed because it expired on 2026-05-26T19:15:00.625Z.

Closed by Workflow