HVTracker MCP
Server Details
Pre-connect trust checks for AI agents and MCP servers using HVTracker's public trust registry.
- Status
- Healthy
- Last Tested
- Transport
- Streamable HTTP
- URL
Glama MCP Gateway
Connect through Glama MCP Gateway for full control over tool access and complete visibility into every call.
Full call logging
Every tool call is logged with complete inputs and outputs, so you can debug issues and audit what your agents are doing.
Tool access control
Enable or disable individual tools per connector, so you decide what your agents can and cannot do.
Managed credentials
Glama handles OAuth flows, token storage, and automatic rotation, so credentials never expire on your clients.
Usage analytics
See which tools your agents call, how often, and when, so you can understand usage patterns and catch anomalies.
Tool Definition Quality
Average 3.8/5 across 3 of 3 tools scored.
Each tool has a clear and distinct purpose: checking an agent's trust profile, searching agents, and verifying an MCP server's trust. No overlap or ambiguity.
All tool names follow a consistent verb_noun pattern with snake_case (check_agent_trust, search_agents, verify_mcp_server). Perfectly predictable.
Three tools is an appropriate, focused set for a trust verification service. Each tool serves a necessary function without bloat or deficiency.
The tool set covers core operations: searching, checking an agent, and verifying an MCP server. Minor gap: no explicit 'list all tracked agents' tool, but search effectively fills that role.
Available Tools
3 toolscheck_agent_trustCheck Agent TrustBRead-onlyIdempotentInspect
Get the HVTracker supply-chain trust profile for a tracked AI agent or framework.
| Name | Required | Description | Default |
|---|---|---|---|
| name_or_repo | Yes |
Output Schema
| Name | Required | Description |
|---|---|---|
| name | No | |
| rank | No | |
| repo | No | |
| query | Yes | |
| message | No | |
| tracked | Yes | |
| category | No | |
| submit_url | No | |
| profile_url | No | |
| trust_score | No | |
| evidence_grade | No | |
| has_provenance | No | |
| scorecard_score | No |
Tool Definition Quality
Does the description disclose side effects, auth requirements, rate limits, or destructive behavior?
Annotations already declare readOnlyHint, openWorldHint, idempotentHint, and destructiveHint. The description adds no additional behavioral context beyond 'Get' – it doesn't mention prerequisites, errors, or what happens if the name is not found. With annotations present, the bar is lower, but the description still fails to provide any incremental behavioral insight.
Agents need to know what a tool does to the world before calling it. Descriptions should go beyond structured annotations to explain consequences.
Is the description appropriately sized, front-loaded, and free of redundancy?
The description is a single, front-loaded sentence with 14 words. It conveys the essential purpose without any fluff. Every word is meaningful and earns its place.
Shorter descriptions cost fewer tokens and are easier for agents to parse. Every sentence should earn its place.
Given the tool's complexity, does the description cover enough for an agent to succeed on first attempt?
For a tool with one parameter, clear annotations, and an output schema, the description is minimal but adequate. It doesn't elaborate on the trust profile contents or interpretation, but the output schema likely covers that. The description could be slightly more complete by mentioning what the trust profile entails.
Complex tools with many parameters or behaviors need more documentation. Simple tools need less. This dimension scales expectations accordingly.
Does the description clarify parameter syntax, constraints, interactions, or defaults beyond what the schema provides?
Schema description coverage is 0%, so the description must compensate. It only says 'for a tracked AI agent or framework', which loosely relates to the parameter name_or_repo but doesn't explain its format, examples, or how it should be provided. The parameter name is self-explanatory, but the description adds no deeper semantic guidance.
Input schemas describe structure but not intent. Descriptions should explain non-obvious parameter relationships and valid value ranges.
Does the description clearly state what the tool does and how it differs from similar tools?
The description clearly states the action ('Get') and the specific resource ('HVTracker supply-chain trust profile') for a tracked AI agent or framework. It implicitly distinguishes from siblings like search_agents (which likely searches agents) and verify_mcp_server (which verifies servers).
Agents choose between tools based on descriptions. A clear purpose with a specific verb and resource helps agents select the right tool.
Does the description explain when to use this tool, when not to, or what alternatives exist?
No explicit guidance on when to use this tool vs alternatives like search_agents or verify_mcp_server. The context signals provide sibling names but the description offers no when-to-use or when-not-to-use advice. Usage is only implied by the tool's purpose.
Agents often have multiple tools that could apply. Explicit usage guidance like "use X instead of Y when Z" prevents misuse.
search_agentsSearch AgentsARead-onlyIdempotentInspect
Search tracked AI agents and frameworks by name, repo, description, or category, ranked by trust score.
| Name | Required | Description | Default |
|---|---|---|---|
| limit | No | ||
| query | No | ||
| category | No |
Output Schema
| Name | Required | Description |
|---|---|---|
| count | Yes | |
| results | Yes |
Tool Definition Quality
Does the description disclose side effects, auth requirements, rate limits, or destructive behavior?
Annotations already declare readOnlyHint, openWorldHint, idempotentHint, destructiveHint. Description adds that results are ranked by trust score, which is beyond annotations. No contradictions.
Agents need to know what a tool does to the world before calling it. Descriptions should go beyond structured annotations to explain consequences.
Is the description appropriately sized, front-loaded, and free of redundancy?
Single sentence that is front-loaded with verb and resource. Every word adds value with no waste.
Shorter descriptions cost fewer tokens and are easier for agents to parse. Every sentence should earn its place.
Given the tool's complexity, does the description cover enough for an agent to succeed on first attempt?
With output schema present, return values need no explanation. Description covers search scope, ranking, and fields. Annotations cover safety. Complete for a simple search tool.
Complex tools with many parameters or behaviors need more documentation. Simple tools need less. This dimension scales expectations accordingly.
Does the description clarify parameter syntax, constraints, interactions, or defaults beyond what the schema provides?
Schema coverage is 0%, so description must compensate. It clarifies that query searches by name, repo, description, and category parameter filters by category, adding meaning. However, limit parameter is not described, leaving a gap.
Input schemas describe structure but not intent. Descriptions should explain non-obvious parameter relationships and valid value ranges.
Does the description clearly state what the tool does and how it differs from similar tools?
Description clearly states it searches tracked AI agents and frameworks by multiple fields (name, repo, description, category) and notes ranking by trust score. This distinguishes it from sibling tools like check_agent_trust and verify_mcp_server.
Agents choose between tools based on descriptions. A clear purpose with a specific verb and resource helps agents select the right tool.
Does the description explain when to use this tool, when not to, or what alternatives exist?
Description implies usage for searching agents by various criteria, but does not explicitly state when to choose this tool over its siblings or when not to use it. No exclusions or alternatives mentioned.
Agents often have multiple tools that could apply. Explicit usage guidance like "use X instead of Y when Z" prevents misuse.
verify_mcp_serverVerify MCP ServerARead-onlyIdempotentInspect
Pre-connect trust verdict for an MCP server, package, GitHub repo, or agent name before connecting an AI agent to it.
| Name | Required | Description | Default |
|---|---|---|---|
| server | Yes |
Output Schema
| Name | Required | Description |
|---|---|---|
| slug | No | |
| grade | Yes | |
| server | Yes | |
| reasons | Yes | |
| tracked | Yes | |
| trusted | Yes | |
| resolved | Yes | |
| confidence | Yes | |
| submit_url | No | |
| trust_score | Yes | |
| tool_permissions | Yes | |
| mcp_server_support | Yes |
Tool Definition Quality
Does the description disclose side effects, auth requirements, rate limits, or destructive behavior?
The description adds 'pre-connect trust verdict' above the annotations, which already indicate read-only, idempotent, and non-destructive behavior. The description does not contradict annotations and adds minor behavioral context, but the annotations already convey the key traits.
Agents need to know what a tool does to the world before calling it. Descriptions should go beyond structured annotations to explain consequences.
Is the description appropriately sized, front-loaded, and free of redundancy?
The description is a single, concise sentence that is front-loaded with the core action and context. Every word contributes to understanding, with no superfluous content.
Shorter descriptions cost fewer tokens and are easier for agents to parse. Every sentence should earn its place.
Given the tool's complexity, does the description cover enough for an agent to succeed on first attempt?
Given the tool's simplicity (one parameter), detailed annotations, and an output schema, the description is largely complete. It states the outcome (trust verdict) and usage context, though it could benefit from noting that results may vary (openWorldHint).
Complex tools with many parameters or behaviors need more documentation. Simple tools need less. This dimension scales expectations accordingly.
Does the description clarify parameter syntax, constraints, interactions, or defaults beyond what the schema provides?
With 0% schema description coverage, the description compensates by stating the parameter 'server' can be an MCP server, package, GitHub repo, or agent name. However, it does not specify the expected format (e.g., name, URL), leaving ambiguity.
Input schemas describe structure but not intent. Descriptions should explain non-obvious parameter relationships and valid value ranges.
Does the description clearly state what the tool does and how it differs from similar tools?
The description clearly states the tool's purpose: providing a trust verdict for various entities (MCP server, package, GitHub repo, agent name) before connecting an AI agent. It uses a specific verb 'verify' and distinguishes from siblings by focusing on pre-connect trust, unlike 'check_agent_trust' and 'search_agents'.
Agents choose between tools based on descriptions. A clear purpose with a specific verb and resource helps agents select the right tool.
Does the description explain when to use this tool, when not to, or what alternatives exist?
The description implies the tool should be used before connecting an AI agent, providing clear context. However, it does not explicitly mention when not to use it or compare with alternatives, though the context is sufficient.
Agents often have multiple tools that could apply. Explicit usage guidance like "use X instead of Y when Z" prevents misuse.
Claim this connector by publishing a /.well-known/glama.json file on your server's domain with the following structure:
{
"$schema": "https://glama.ai/mcp/schemas/connector.json",
"maintainers": [{ "email": "your-email@example.com" }]
}The email address must match the email associated with your Glama account. Once published, Glama will automatically detect and verify the file within a few minutes.
Control your server's listing on Glama, including description and metadata
Access analytics and receive server usage reports
Get monitoring and health status updates for your server
Feature your server to boost visibility and reach more users
For users:
Full audit trail – every tool call is logged with inputs and outputs for compliance and debugging
Granular tool control – enable or disable individual tools per connector to limit what your AI agents can do
Centralized credential management – store and rotate API keys and OAuth tokens in one place
Change alerts – get notified when a connector changes its schema, adds or removes tools, or updates tool definitions, so nothing breaks silently
For server owners:
Proven adoption – public usage metrics on your listing show real-world traction and build trust with prospective users
Tool-level analytics – see which tools are being used most, helping you prioritize development and documentation
Direct user feedback – users can report issues and suggest improvements through the listing, giving you a channel you would not have otherwise
The connector status is unhealthy when Glama is unable to successfully connect to the server. This can happen for several reasons:
The server is experiencing an outage
The URL of the server is wrong
Credentials required to access the server are missing or invalid
If you are the owner of this MCP connector and would like to make modifications to the listing, including providing test credentials for accessing the server, please contact support@glama.ai.
Discussions
No comments yet. Be the first to start the discussion!