Skip to main content
Glama
MichaelEnny

healthsec-mcp

by MichaelEnny

Server Configuration

Describes the environment variables required to run the server.

NameRequiredDescriptionDefault
CONNECTOR_DATA_ROOTNoOverride the location of the data directory (default is ../data/ relative to the package).

Capabilities

Features and capabilities supported by this server

CapabilityDetails
tools
{
  "listChanged": false
}
prompts
{
  "listChanged": false
}
resources
{
  "subscribe": false,
  "listChanged": false
}
experimental
{}

Tools

Functions exposed to the LLM to take actions

NameDescription
run_fgsmB

Run a LIME-guided FGSM adversarial attack against a registered model.

    `batch` is capped at 100 samples -- the validated protocol limit.
    Returns AUROC drop, flip rate, and the clinical-plausibility rate of
    the generated adversarial samples. A 100% plausibility rate does not
    mean the attack failed: it means bounds clipping alone does not stop
    the attack, since perturbations are clipped to clinical bounds by
    construction.
    
run_boundary_attackA

Run an iterative decision-boundary attack against a registered model.

    Moves each sample in `batch` toward an opposite-predicted-class
    sample drawn from the same batch, one step at a time, until the
    model's prediction flips or `max_steps` is exhausted. `batch` is
    capped at 100 samples -- the validated protocol limit.
    
run_membership_inferenceA

Run a shadow-model membership-inference attack against a registered model.

    `member_pool` must be rows known to have been in the model's
    training set -- it trains the shadow models and supplies the
    known-member evaluation sample. `nonmember_pool` must be rows
    known NOT to have been in training (e.g. a held-out test split) --
    it supplies the known-non-member evaluation sample only. Each pool
    is capped at 5,000 samples; shadow-model training does not scale
    past this in the validated protocol.

    Returns the attack's accuracy/AUROC at distinguishing members from
    non-members, a privacy-risk tier, and a direct count of how many
    of the evaluated members would be identifiable -- not a
    population-scale extrapolation.
    
assess_attack_coverageA

Score MITRE ATT&CK-style threat-coverage from per-control test results.

    Each entry in `control_set` needs `result` ("PASS"/"PARTIAL"/"FAIL")
    and may include `mitigation_implemented`/`tested` booleans. A
    PARTIAL counts as half-covered.
    
check_rbacA

Score RBAC enforcement from already-executed endpoint/role probes.

    This tool does not make live HTTP calls -- probe the system
    yourself and pass the results here. Each entry needs `expected`
    ("ALLOWED" or "DENIED") and the observed `status_code`.
    
score_audit_completenessA

Score audit-log completeness for non-repudiation.

    An entry is complete only if every required field is present and
    not null. `required_fields` defaults to the validated field set:
    timestamp, event, user_id, role, patient_id_hash, model_name,
    model_version, input_feature_hash, prediction, confidence.
    
score_complianceA

Score a HIPAA/FHIR compliance checklist.

    Each entry needs `id` (prefixed "HIPAA-..." or "FHIR-..." to
    determine which standard it belongs to), `status`
    ("PASS"/"PARTIAL"/"FAIL"/null), and `weight`.
    
compute_spsB

Compose the Security Posture Score from four dimension inputs.

    `auroc_drop` should be the WORST-CASE drop across all adversarial
    attack runs performed (max, not mean, across FGSM/boundary and
    any datasets evaluated) -- that's what the validated weighting
    was calibrated against. `compliance_score` is a fraction (0-1),
    e.g. `score_compliance`'s `overall_pct` divided by 100.

    Returns the composite SPS (0-100), a deployment recommendation
    tier, and each dimension's subscore/weight/contribution for a
    transparent breakdown.
    
generate_security_reportA

Compose a structured security report from whichever tool outputs you have.

    Pass the raw dict returned by any subset of run_fgsm,
    run_boundary_attack, run_membership_inference,
    assess_attack_coverage, check_rbac, score_audit_completeness,
    score_compliance, and compute_sps. Sections you didn't run are
    marked "not evaluated", never silently assumed to pass. A
    deployment recommendation only appears if `sps` (compute_sps's
    own output) is supplied -- it is never inferred from partial
    results.
    
get_audit_logA

Return this session's audit trail.

    Every authz-gated tool call (run_fgsm, run_boundary_attack,
    run_membership_inference) is recorded here, whether it was
    authorized or denied.
    

Prompts

Interactive templates invoked by user choice

NameDescription

No prompts

Resources

Contextual data attached and managed by the client

NameDescription

No resources

Latest Blog Posts

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/MichaelEnny/healthsec-mcp'

If you have feedback or need assistance with the MCP directory API, please join our Discord server