14 servers, ranked on the proofof.ai 100-point production-readiness rubric. Updated 2026-06-07.
The highest-scored are cisa-kev-mcp (90/100), cra-compliance-mcp (90/100), credential-manager-mcp (90/100). Full ranking below — each links to its detailed scorecard.
| # | MCP server | Score | What it does | Install |
|---|---|---|---|---|
| 1 | cisa-kev-mcp | 90 | CISA Known Exploited Vulnerabilities feed + remediation deadlines for US federal + critica | pip install cisa-kev-mcp |
| 2 | cra-compliance-mcp | 90 | EU Cyber Resilience Act (Regulation 2024/2847) compliance for AI agents. Product classific | pip install cra-compliance-mcp |
| 3 | credential-manager-mcp | 90 | Credential Manager MCP Server by MEOK AI Labs | pip install credential-manager-mcp |
| 4 | meok-c2pa-durable-mcp | 90 | MEOK C2PA Durable Content Credentials MCP — C2PA 2.2 with soft + hard binding (Digimarc-co | pip install meok-c2pa-durable-mcp |
| 5 | meok-cra-annex-iv-classifier-mcp | 90 | EU Cyber Resilience Act product classifier MCP. Classifies PDEs into CRA hierarchy (defaul | pip install meok-cra-annex-iv-classifier-mcp |
| 6 | meok-cra-art14-reporter-mcp | 90 | MEOK CRA Article 14 Reporter MCP — actively-exploited-vulnerability notification with 24h/ | pip install meok-cra-art14-reporter-mcp |
| 7 | mitre-atlas-mcp | 90 | MITRE ATLAS — Adversarial Threat Landscape for AI Systems. Tactics + techniques for attack | pip install mitre-atlas-mcp |
| 8 | mitre-attack-mcp | 90 | MITRE ATT&CK matrix lookup, tactic/technique/sub-technique mapper, and incident-to-techniq | pip install mitre-attack-mcp |
| 9 | sbom-cyclonedx-mcp | 90 | Software Bill of Materials generation + validation in CycloneDX 1.6 and SPDX 2.3 formats. | pip install sbom-cyclonedx-mcp |
| 10 | sigstore-cosign-mcp | 90 | Sigstore cosign + rekor transparency log verification for signed container images + git ta | pip install sigstore-cosign-mcp |
| 11 | slsa-supply-chain-mcp | 90 | SLSA (Supply chain Levels for Software Artifacts) v1.0 framework. Compute SLSA level + rem | pip install slsa-supply-chain-mcp |
| 12 | trust-chain-mcp | 90 | Trust Chain MCP server. Tools: create trust anchor, verify chain, add attestation. Built b | pip install trust-chain-mcp |
| 13 | firmware-attestation-mcp | 88 | Firmware Attestation MCP — hardware trust layer for sovereign AI. Scan firmware, check | pip install firmware-attestation-mcp |
| 14 | supply-chain-mcp | 86 | Supply chain management and logistics tools for AI agents. Capabilities: shipment tracking | pip install supply-chain-mcp |
Each MCP server is scored 0-100 across 10 categories (README, tool design, examples, tests/CI, transports, metadata, reliability, security, docs, provenance). See the methodology.